DEIF Wind Power Technology AWC 500 Wind Turbine Multiple Default Accounts

DEIF Wind Power Technology makes the model AWC 500 wind turbine that allows remote access via telnet, SSH and HTTP. According to the manual (dated 2013-06-25) there are default accounts:

deif-awc_500-defaults

With these you can log into the web interface and access a few menu items:

deif-menu

deif-access

deif-status

Accessing via telnet works even if the root password has been changed. The system runs on BusyBox:

df:~ # telnet 1.2.3.4
Trying 1.2.3.4…
Connected to 1.2.3.4.
Escape character is ‘^]’.

deif-00-B0-49 login: root
Password:
Login incorrect
deif-00-B0-49 login: default
warning: cannot change to home directory
$ ls

You can also fingerprint the device via TCP port 44818 (EtherNetIP) which gives:

Product name: DEIF ML-2)
Vendor ID: 1284
Serial number: 0xcadb00c8
Device type: Communications Adapter
Device IP: 1.2.3.4

Advertisements

Tags: ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: