[Openvas-commits] r11700 - in trunk/openvas-plugins: . scripts

scm-commit@wald.intevation.org scm-commit at wald.intevation.org
Tue Sep 27 14:53:11 CEST 2011


Author: mime
Date: 2011-09-27 14:53:03 +0200 (Tue, 27 Sep 2011)
New Revision: 11700

Modified:
   trunk/openvas-plugins/ChangeLog
   trunk/openvas-plugins/scripts/3com_switches.nasl
   trunk/openvas-plugins/scripts/Accelar_1200.nasl
   trunk/openvas-plugins/scripts/Allied_Telesyn_telnet.nasl
   trunk/openvas-plugins/scripts/avaya_switches.nasl
   trunk/openvas-plugins/scripts/cisco_default_pw.nasl
   trunk/openvas-plugins/scripts/default_credentials.inc
Log:
Use only vendor related username/password combination. Added vendor to list.

Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/ChangeLog	2011-09-27 12:53:03 UTC (rev 11700)
@@ -1,3 +1,15 @@
+2011-09-27  Michael Meyer <michael.meyer at greenbone.net>
+
+	* scripts/avaya_switches.nasl,
+	scripts/Allied_Telesyn_telnet.nasl,
+	scripts/Accelar_1200.nasl,
+	scripts/3com_switches.nasl,
+	scripts/cisco_default_pw.nasl:
+	Use only vendor related username/password combination.
+
+	* scripts/default_credentials.inc:
+	Added vendor to list.
+
 2011-09-27  Henri Doreau <henri.doreau at greenbone.net>
 
 	* scripts/gather-hardware-info.nasl: Enable script by default.

Modified: trunk/openvas-plugins/scripts/3com_switches.nasl
===================================================================
--- trunk/openvas-plugins/scripts/3com_switches.nasl	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/3com_switches.nasl	2011-09-27 12:53:03 UTC (rev 11700)
@@ -77,7 +77,9 @@
 if(get_port_state(port))
 {
 
-  foreach credential (credentials) 
+  clist = try(vendor:"3com");
+
+  foreach credential (clist) 
   {
 
      user_pass = split(credential, sep:";",keep:FALSE);

Modified: trunk/openvas-plugins/scripts/Accelar_1200.nasl
===================================================================
--- trunk/openvas-plugins/scripts/Accelar_1200.nasl	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/Accelar_1200.nasl	2011-09-27 12:53:03 UTC (rev 11700)
@@ -72,8 +72,10 @@
         if ("Accelar 1200" >< tnb)
         {
 
-	  foreach credential (credentials) {
+	  clist = try(vendor:"accelar");
 
+	  foreach credential (clist) {
+
 	     user_pass = split(credential, sep:";",keep:FALSE);
 	     if(isnull(user_pass[0]) || isnull(user_pass[1]))continue;
 

Modified: trunk/openvas-plugins/scripts/Allied_Telesyn_telnet.nasl
===================================================================
--- trunk/openvas-plugins/scripts/Allied_Telesyn_telnet.nasl	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/Allied_Telesyn_telnet.nasl	2011-09-27 12:53:03 UTC (rev 11700)
@@ -63,6 +63,7 @@
 #
 
 include("telnet_func.inc");
+include("default_credentials.inc");
 
 port = 23;
 if(get_port_state(port))
@@ -71,8 +72,10 @@
         if ("TELNET session" >< tnb)
         {
 
-	  foreach credential (credentials) {
+	  clist = try(vendor:"allied");
 
+	  foreach credential (clist) {
+
 	    user_pass = split(credential, sep:";",keep:FALSE);
 	    if(isnull(user_pass[0]) || isnull(user_pass[1]))continue;
 

Modified: trunk/openvas-plugins/scripts/avaya_switches.nasl
===================================================================
--- trunk/openvas-plugins/scripts/avaya_switches.nasl	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/avaya_switches.nasl	2011-09-27 12:53:03 UTC (rev 11700)
@@ -73,8 +73,10 @@
         if ("Welcome to P330" >< tnb)
         {
 
-	  foreach credential (credentials) {
+	  clist = try(vendor:"avaya");
 
+	  foreach credential (clist) {
+
 	    user_pass = split(credential, sep:";",keep:FALSE);
             if(isnull(user_pass[0]) || isnull(user_pass[1]))continue;
 

Modified: trunk/openvas-plugins/scripts/cisco_default_pw.nasl
===================================================================
--- trunk/openvas-plugins/scripts/cisco_default_pw.nasl	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/cisco_default_pw.nasl	2011-09-27 12:53:03 UTC (rev 11700)
@@ -226,9 +226,12 @@
 
 check_cisco_account(login:"cisco", password:"cisco");
 check_cisco_account(login:"", password:"");
+
+clist = try(vendor:"cisco"); # get all cisco relevant credentials
+
 if ( safe_checks() == 0 )
 {
- foreach credential (credentials) { 
+ foreach credential (clist) { 
 
    user_pass = split(credential, sep:";",keep:FALSE);
    if(isnull(user_pass[0]) || isnull(user_pass[1]))continue;

Modified: trunk/openvas-plugins/scripts/default_credentials.inc
===================================================================
--- trunk/openvas-plugins/scripts/default_credentials.inc	2011-09-27 07:50:59 UTC (rev 11699)
+++ trunk/openvas-plugins/scripts/default_credentials.inc	2011-09-27 12:53:03 UTC (rev 11700)
@@ -23,191 +23,212 @@
 # USA.
 ###############################################################################
 
+# user;pass;vendor(multiple vendors seperated by ",")
 credentials = make_list(
-"root;pass",
-"MGR;REGO",
-"MAIL;TELESUP",
-"storwatch;specialist",
-"admin;hp.com",
-"user;public",
-"MGR;HPP196",
-"at4400;at4400",
-"FIELD;HPWORD PUB",
-"Username;Password",
-"root;letacla",
-"HELLO;MGR.SYS",
-"mtch;mtch",
-"User;none",
-"device;device",
-"Administrator;admin",
-"MANAGER;COGNOS",
-"MAIL;HPOFFICE",
-"admin;diamond",
-"patrol;patrol",
-"MAIL;MAIL",
-"admin;changeme",
-"admin;default",
-"dhs3pms;dhs3pms",
-"root;Mau'dib",
-"login;password",
-"PFCUser;240653C9467E45",
-"Administrator;letmein",
-"davox;davox",
-"debug;synnet",
-"MANAGER;SECURITY",
-"FIELD;SERVICE",
-"sa;none",
-"Cisco;Cisco",
-"root;attack",
-"guest;none",
-"MGR;CONV",
-"MANAGER;TELESUP",
-"volition;volition",
-"administrator;administrator",
-"FIELD;HPP187 SYS",
-"public;none",
-"cmaker;cmaker",
-"OPERATOR;DISC",
-"OPERATOR;SUPPORT",
-"admin;synnet",
-"SYSDBA;masterkey",
-"PBX;PBX",
-"apc;apc",
-"acc;acc",
-"root;tslinux",
-"tech;tech",
-"root;ascend",
-"operator;none",
-"FIELD;MANAGER",
-"MGR;WORD",
-"root;root",
-"OPERATOR;COGNOS",
-"super;surt",
-"netrangr;attack",
-"install;llatsni",
-"Manager;none",
-"admin;hello",
-"admin;bintec",
-"craft;none",
-"MGR;TELESUP",
-"manager;manager",
-"MANAGER;TCH",
-"cgadmin;cgadmin",
-"adm;none",
-"monitor;monitor",
-"MGR;VESOFT",
-"admin;my_DEMARC",
-"WP;HPOFFICE",
-"manager;friend",
-"diag;switch",
-"Anonymous;none",
-"netman;netman",
-"root;davox",
-"MANAGER;HPOFFICE",
-"MGR;HPOFFICE",
-"Guest;none",
-"admin;radius",
-"security;security",
-"admin;epicrouter",
-"supervisor;supervisor",
-"MGR;RJE",
-"MAIL;MPE",
-"root;none",
-"DTA;TJM",
-"admin;cisco",
-"NICONEX;NICONEX",
-"MGR;ROBELLE",
-"FIELD;SUPPORT",
-"FIELD;HPONLY",
-"MGR;CNAS",
-"RSBCMON;SYS",
-"HELLO;OP.OPERATOR",
-"NETWORK;NETWORK",
-"admin;linga",
-"admin;switch",
-"hscroot;abc123",
-"admin;none",
-"Administrator;the same all over",
-"MGR;XLSERVER",
-"HELLO;MANAGER.SYS",
-"kermit;kermit",
-"MGR;CAROLIAN",
-"ADVMAIL;HP",
-"D-Link;D-Link",
-"MDaemon;MServer",
-"MGR;ITF3000",
-"admin;netadmin",
-"admin;secure",
-"admin;system",
-"tech;none",
-"customer;none",
-"MGR;SYS",
-"MGR;NETBASE",
-"root;fivranne",
-"bbsd-client;changeme2",
-"user;user",
-"vt100;public",
-"root;ROOT500",
-"cellit;cellit",
-"anonymous;none",
-"netman;none",
-"Administrator;none",
-"MAIL;REMOTE",
-"manager;admin",
-"intel;intel",
-"MGR;SECURITY",
-"MGR;HPP189",
-"operator;operator",
-"mediator;mediator",
-"MGR;HPDESK",
-"adminttd;adminttd",
-"sysadm;anicust",
-"setup;setup",
-"HELLO;FIELD.SUPPORT",
-"mtcl;mtcl",
-"MGR;CCC",
-"bbsd-client;NULL",
-"root;cms500",
-"admin;comcomcom",
-"MANAGER;ITF3000",
-"admin;password",
-"OPERATOR;SYSTEM",
-"IntraStack;Asante",
-"MGR;INTX3",
-"Root;none",
-"admin;1234",
-"root;tini",
-"FIELD;MGR",
-"anonymous;any@",
-"Administrator;changeme",
-"FIELD;LOTUS",
-"root;permit",
-"adfexc;adfexc",
-"root;default",
-"halt;tlah",
-"MGR;HPP187",
-"PCUSER;SYS",
-"readonly;lucenttech2",
-"SPOOLMAN;HPOFFICE",
-"MGR;HPONLY",
-"MANAGER;SYS",
-"diag;danger",
-"user;none",
-"craft;crftpw",
-"login;admin",
-"admin;admin",
-"client;client",
-"OPERATOR;SYS",
-"MGR;COGNOS",
-"manuf;xxyyzz",
-"3comcso;RIP000",
-"dhs3mt;dhs3mt",
-"ADVMAIL;HPOFFICE DATA",
-"superadmin;secret",
-"superuser;(none)",
-"recovery;recovery",
-"NETOP;none",
-"IntraSwitch;Asante",
-"cisco;none",
-"rwa;rwa"  
+"root;pass;axis",
+"MGR;REGO;hp",
+"MAIL;TELESUP;hp",
+"storwatch;specialist;ibm",
+"admin;hp.com;hp",
+"user;public;compaq",
+"MGR;HPP196;hp",
+"at4400;at4400;alcatel",
+"FIELD;HPWORD PUB;hp",
+"root;letacla;alcatel",
+"HELLO;MGR.SYS;hp",
+"mtch;mtch;alcatel",
+"User;none;bay networks,dlink",
+"device;device;apc",
+"Administrator;admin;cisco,conexant,corecess,gvc",
+"MANAGER;COGNOS;hp",
+"MAIL;HPOFFICE;hp",
+"admin;diamond;cisco",
+"patrol;patrol;bmc",
+"MAIL;MAIL;hp",
+"admin;changeme;cisco",
+"admin;default;cisco",
+"dhs3pms;dhs3pms;alcatel",
+"root;Mau'dib;celerity",
+"login;password;efficient",
+"PFCUser;240653C9467E45;compaq",
+"Administrator;letmein;integral",
+"davox;davox;davox",
+"debug;synnet;3com",
+"MANAGER;SECURITY;hp",
+"FIELD;SERVICE;hp",
+"sa;none;cisco,davox",
+"Cisco;Cisco;cisco",
+"root;attack;cisco",
+"guest;none;cisco,edimax,intel",
+"MGR;CONV;hp",
+"MANAGER;TELESUP;hp",
+"volition;volition;3m",
+"administrator;administrator;compaq",
+"FIELD;HPP187 SYS;hp",
+"public;none;ericsson",
+"cmaker;cmaker;cisco",
+"OPERATOR;DISC;hp",
+"OPERATOR;SUPPORT;hp",
+"admin;synnet;3com",
+"SYSDBA;masterkey;interbase",
+"PBX;PBX;dictaphone",
+"apc;apc;apc",
+"acc;acc;andover controls",
+"root;tslinux;cyclades",
+"tech;tech;3com",
+"root;ascend;ascend",
+"operator;none;3com",
+"FIELD;MANAGER;hp",
+"MGR;WORD;hp",
+"root;root;ambit,avaya",
+"OPERATOR;COGNOS;hp",
+"super;surt;cyclades",
+"netrangr;attack;cisco",
+"install;llatsni;alcatel",
+"Manager;none;bay networks",
+"admin;hello;intel,shiva",
+"admin;bintec;bintec",
+"craft;none;avaya",
+"MGR;TELESUP;hp",
+"manager;manager;3com",
+"MANAGER;TCH;hp",
+"cgadmin;cgadmin;cyberguard",
+"adm;none;3com",
+"monitor;monitor;3com",
+"MGR;VESOFT;hp",
+"admin;my_DEMARC;demarc",
+"WP;HPOFFICE;hp",
+"manager;friend;Allied",
+"diag;switch;alcatel",
+"Anonymous;none;compaq;hp",
+"netman;netman;ericsson",
+"root;davox;davox",
+"MANAGER;HPOFFICE;hp",
+"MGR;HPOFFICE;hp",
+"Guest;none;intel",
+"admin;radius;funk software",
+"security;security;3com;bay networks",
+"admin;epicrouter;e-tech",
+"supervisor;supervisor;everfocus",
+"MGR;RJE;hp",
+"MAIL;MPE;hp",
+"root;none;3com,allied,buffalo,intel",
+"DTA;TJM;aspect",
+"admin;cisco;cisco",
+"NICONEX;NICONEX;intel",
+"MGR;ROBELLE;hp",
+"FIELD;SUPPORT;hp",
+"FIELD;HPONLY;hp",
+"MGR;CNAS;hp",
+"RSBCMON;SYS;hp",
+"HELLO;OP.OPERATOR;hp",
+"NETWORK;NETWORK;dictaphone",
+"admin;linga;alteon",
+"admin;switch;alcatel",
+"hscroot;abc123;ibm",
+"admin;none;3com,aceex,alteon,telekom,dlink,enterasys,extreme networks,fortinet,hp,ibm,intel",
+"Administrator;the same all over;bmc",
+"MGR;XLSERVER;hp",
+"HELLO;MANAGER.SYS;hp",
+"kermit;kermit;alcatel",
+"MGR;CAROLIAN;hp",
+"ADVMAIL;HP;hp",
+"D-Link;D-Link;dlink",
+"MDaemon;MServer;deerfield",
+"MGR;ITF3000;hp",
+"admin;netadmin;enterasys",
+"admin;secure;ADIC",
+"admin;system;cisco",
+"tech;none;3com",
+"customer;none;aspect",
+"MGR;SYS;hp",
+"MGR;NETBASE;hp",
+"root;fivranne;brocade",
+"bbsd-client;changeme2;cisco",
+"user;user;compaq",
+"vt100;public;ibm",
+"root;ROOT500;avaya",
+"cellit;cellit;cellit",
+"anonymous;none;compaq",
+"netman;none;cabletron",
+"Administrator;none;3com",
+"MAIL;REMOTE;hp",
+"manager;admin;allied",
+"intel;intel;intel",
+"MGR;SECURITY;hp",
+"MGR;HPP189;hp",
+"operator;operator;compaq,everfocus",
+"mediator;mediator;celerity",
+"MGR;HPDESK;hp",
+"adminttd;adminttd;3com",
+"sysadm;anicust;accelerated networks",
+"setup;setup;intel",
+"HELLO;FIELD.SUPPORT;hp",
+"mtcl;mtcl;alcatel",
+"MGR;CCC;hp",
+"bbsd-client;null;cisco",
+"root;cms500;avaya",
+"admin;comcomcom;3com",
+"MANAGER;ITF3000;hp",
+"admin;password;3com,adic,brocade,ciphertrust,ibm",
+"OPERATOR;SYSTEM;hp",
+"IntraStack;Asante;asante",
+"MGR;INTX3;hp",
+"Root;none;3com,ambit",
+"admin;1234;edimax",
+"root;tini;dallas semiconductors",
+"FIELD;MGR;hp",
+"anonymous;any@;datawizard.net",
+"Administrator;changeme;cisco",
+"FIELD;LOTUS;hp",
+"root;permit;alcatel",
+"adfexc;adfexc;alcatel",
+"root;default;f5",
+"halt;tlah;alcatel",
+"MGR;HPP187;hp",
+"PCUSER;SYS;hp",
+"readonly;lucenttech2;ascend",
+"SPOOLMAN;HPOFFICE;hp",
+"MGR;HPONLY;hp",
+"MANAGER;SYS;hp",
+"diag;danger;avaya",
+"user;none;dlink",
+"craft;crftpw;avaya",
+"login;admin;efficient",
+"admin;admin;huawei,3com;allied,alteon,amitech,billon,checkpoint,cisco,com3,davox,dlink,draytek,dynalink,everfocus,flowpoint,foundry networks,hp",
+"client;client;alcatel",
+"OPERATOR;SYS;hp",
+"MGR;COGNOS;hp",
+"manuf;xxyyzz;avaya",
+"3comcso;RIP000;3com",
+"dhs3mt;dhs3mt;alcatel",
+"ADVMAIL;HPOFFICE DATA;hp",
+"superadmin;secret;ibm",
+"superuser;none;asante",
+"recovery;recovery;3com",
+"NETOP;none;dictaphone",
+"IntraSwitch;Asante;asante",
+"cisco;none;cisco",
+"rwa;rwa;accelar"  
 );
+
+
+function try(vendor) {
+
+  local_var vendor, clist, credential;
+
+  foreach credential (credentials) {
+
+    if(vendor >!< credential)continue;
+
+    if(typeof(clist) == "undef") {
+       clist = make_list(credential);
+    } else {
+       clist = make_list(clist,credential);
+    }  
+
+  }  
+
+  return clist;
+
+}  



More information about the Openvas-commits mailing list