Detections
Analytics

Samsung Data Management Server Default Password (rkwjsdusrnth) for 'root' Account

critical Nessus Plugin ID 53878

Language:

Synopsis

An administrative account on the remote host uses a known password.

Description

The remote device is a Samsung Integrated Management System DMS (Data Management Server), an embedded hardware device used to manage a large number of air conditioning units. It also has a 'root' account with the password 'rkwjsdusrnth', which reportedly is a default configuration used used for firmware updates.

An attacker may leverage this issue to gain administrative access to the affected system.

Solution

Use a firewall to limit access to the affected service.

See Also

http://www.nessus.org/u?c0842762

Plugin Details

Severity: Critical

ID: 53878

File Name: scada_samsung_dms_account_root_rkwjsdusrnth.nbin

Version: 1.76

Type: remote

Family: SCADA

Published: 5/11/2011

Updated: 3/19/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Vulnerability Publication Date: 5/9/2011

Reference Information

ICS-ALERT: 11-129-01