2023-11-03 11:31:50 +00:00
id : dell-dpi-default-login
2023-05-20 22:07:51 +00:00
info :
2023-11-03 11:31:50 +00:00
name : Dell DPI Remote Power Management - Default Login
2023-05-20 22:07:51 +00:00
author : megamansec
severity : medium
2023-11-03 11:31:50 +00:00
description : |
The Dell Metered Rack Power Distribution Unit uses a default username and password which is widely known, and any user could change the default password with access.
2023-05-20 22:11:25 +00:00
reference :
2023-05-20 22:07:51 +00:00
- https://dl.dell.com/manuals/all-products/esuprt_ser_stor_net/esuprt_rack_infrastructure/dell-metered-pdu_user%27s%20guide3_en-us.pdf
classification :
cwe-id : CWE-798
2023-11-06 13:16:29 +00:00
metadata :
max-request : 2
2023-11-03 11:31:50 +00:00
tags : dell,dpi,rpm,default-login
variables :
str : "{{to_lower(rand_text_alpha(5))}}"
http :
2023-05-20 22:07:51 +00:00
- raw :
- |
POST /index2.html HTTP/1.1
Host : {{Hostname}}
2023-11-03 11:31:50 +00:00
Authorization : Basic {{base64('{{username}}:{{password}}')}}
- |
POST /index2.html HTTP/1.1
Host : {{Hostname}}
Authorization : Basic {{base64('{{str}}:{{str}}')}}
payloads :
username :
- admin
password :
- admin
attack : pitchfork
2023-05-20 22:07:51 +00:00
host-redirects : true
max-redirects : 2
2023-11-06 13:16:29 +00:00
2023-05-20 22:07:51 +00:00
matchers-condition : and
matchers :
2023-11-03 11:31:50 +00:00
- type : dsl
dsl :
- 'status_code_1 == 200 && status_code_2 == 401'
- 'contains(body_2, "Unauthorized")'
- '!contains(body_1, "/index.html")'
- 'contains_any(tolower(body_1), "<TITLE>DELL DPI Remote Power Management", "title=\"DELL DPI Remote Power Management")'
2023-05-20 22:07:51 +00:00
condition : and
2023-11-06 15:02:07 +00:00
# digest: 4a0a0047304502207ec3715d4ce799a65597cc52dda3045bd8212193918fb00d7639d9c737068a33022100e94aa17ac15af55326a8ed2f244192b2d5d309fc753539a92bf72d15b74bf963:922c64590222798bb761d5b6d8e72950
