SoftEther VPN Default Login Scanner

SoftEther VPN is a versatile, cross-platform, open-source VPN solution widely used by organizations to establish secure connections across different network environments. It is developed by the University of Tsukuba in Japan, aiming to provide a robust and versatile VPN platform that supports various protocols like SSL-VPN, L2TP, and OpenVPN. Many businesses and individual users rely on SoftEther VPN due to its ease of installation and compatibility with multiple operating systems. It allows users to create private networks over the public internet, providing secure and encrypted communication. The software's wide array of features makes it a popular choice for corporations looking for VPN solutions without the high costs associated with proprietary software. Additionally, the SoftEther VPN supports cloud infrastructure, giving users flexibility in deploying VPN on virtual servers.

The vulnerability detected in SoftEther VPN Admin Console involves the use of default credentials, which can be a significant security risk. Default administrative accounts with blank passwords could allow unauthorized users to gain access to the system's administrative functions. This vulnerability arises when systems are set up without changing default settings that come with out-of-the-box software installations. Attackers can exploit this by accessing critical administrative features, assuming control, or obtaining sensitive data. It underscores the importance of enforcing good security practices to prevent unauthorized access. Such vulnerabilities are common in systems where security configurations have not been adequately established or maintained.

The SoftEther VPN Admin Console vulnerability specifically involves administrative access without any valid credentials due to a default, blank password setting. The vulnerable endpoint is typically the admin interface of the SoftEther VPN Server, which does not require password authentication by default. This setting is often left unchanged by system administrators, especially in initial configurations or after resets, leaving systems prone to exploitation. The vulnerable parameter is the authentication process itself, which fails to enforce a password policy upon setup. Given the sensitive nature of administration consoles, this default state can be readily targeted by threat actors using automated tools to scan for default configurations.

When exploited, this vulnerability can result in unauthorized administrative access, leading to a range of possible effects. Attackers with access can manipulate VPN configurations, potentially injecting malicious profiles or settings that disrupt network security. Critical information stored in the admin console can be exfiltrated, posing privacy and data security concerns. They might also create backdoor accounts for persistent access or leverage the system to launch further attacks within the organization's network. Moreover, exploitation of such a vulnerability can lead to reputational damage and legal consequences for failing to secure sensitive systems properly.

REFERENCES

• https://www.softether.org/4-docs/1-manual/3._SoftEther_VPN_Server_Manual/3.3_VPN_Server_Administration#Administration_Authority_for_the_Entire_SoftEther_VPN_Server