cpe:/h:riorey:rios:4.6.6 cpe:/h:riorey:rios:4.7.0 CVE-2009-3710 2009-10-16T12:30:00.967-04:00 2009-10-19T00:00:00.000-04:00 10.0 NETWORK LOW NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-10-19T07:56:00.000-04:00 ALLOWS_ADMIN_ACCESS SECUNIA 36971 OSVDB 58858 MISC http://packetstormsecurity.org/0910-exploits/riorey-passwd.txt RioRey RIOS 4.6.6 and 4.7.0 uses an undocumented, hard-coded username (dbadmin) and password (sq!us3r) for an SSH tunnel, which allows remote attackers to gain privileges via port 8022.