SOUND4 Impact/Pulse/First/Eco Hardcoded Credentials Vulnerability

A vulnerability exists in SOUND4 Impact, Pulse, First, and Eco versions 2.x and below, as well as in BigVoice4, BigVoice2, Stream, and WM2. This vulnerability involves hardcoded credentials embedded in the server binaries, which are not accessible to the end user and cannot be changed through normal device operations. These static credentials can be exploited to gain unauthorized access to the device on both Linux and Windows platforms, without any user interaction.

Impact

Exploitation of this vulnerability allows for unauthorized access to the device, bypassing authentication requirements. This could lead to privilege escalation, as the hardcoded credentials include an admin account, and potentially allow for denial-of-service conditions.

Reproduction

The vulnerability can be reproduced by extracting the server binary from the SOUND4 application package. The hardcoded credentials can be accessed by searching for password entries within the binary using a strings command or similar binary analysis tools. Once the credentials are extracted, they can be used to log into the application or service, bypassing normal authentication mechanisms.