ZTE ZXV10 W300 Wireless Router Hard-coded Password
Critical Nessus Plugin ID 72813
SynopsisThe remote device is using a known set of hard-coded credentials.
DescriptionNessus was able to login to the remote device using a known hard-coded password (prepended with a portion of the device's MAC address obtained from an SNMP request) for the admin account. Attackers can exploit this vulnerability to gain full control of the device.
SolutionThere is no known fix. As a workaround, use firewall rules to block SNMP and telnet access.