Knowledge Base / Security Advisories
Impacted Devices and Firmware:
Summary:
The SMTP password for a previously saved set of credentials is disclosed by the device to an administrator.
Description:
When an administrator authenticates with the device and browses the settings pages, the SMTP password is loaded from the device and presented in the DOM in plaintext. When settings are saved, the SMTP credentials are sent back to the device in plain text. This allows an actor with administrative access to the device to obtain the SMTP credentials previously stored in the device’s settings.
Recommendation:
For best security, upgrade from legacy E-model devices to S-models which do not have this vulnerability. Regardless of the model, AVTECH strongly recommends that users set custom administrative credentials on the device to restrict access to all settings, including SMTP credentials. When using E-models, use Room Alert Account or Room Alert Manager, where possible, to send email notifications instead of sending them directly from the device. If the device is not being used to send emails, ensure any SMTP credentials have been removed from the device.
We'd love to talk with you about your monitoring needs. Contact one of our Product Specialists for a free consultation.
You may find Windows Command Prompt at the following path:
To run Windows Command Prompt as an administrator:
If you are using this client, you should configure the general SNMPv3 Credentials, but leave the Read / Write SNMPv3 Credentials section blank.
| Current S models | Current E models |
|---|---|
| Room Alert 32S | Room Alert 32E |
| Room Alert 12S | Room Alert 12E |
| Room Alert 4E | |
| Room Alert 3E | |
| Current S models | Current E models |
|---|---|
| Room Alert 32S | Room Alert 32E |
| Room Alert 12S | Room Alert 12E |
| Room Alert 3S | Room Alert 4E |
| Room Alert 3E | |
| Room Alert 3W |
