Xerox Fuji/VersaLink Default Login Scanner
This scanner detects the use of Xerox Fuji/VersaLink default login credentials in digital assets. It helps identify potential security risks associated with default credentials, offering an important step in safeguarding your network against unauthorized access.
Short Info
Level
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
16 days 15 hours
Scan only one
Domain, Subdomain, IPv4
Toolbox
Xerox Fuji/VersaLink devices are multifunction printers widely used in offices and businesses worldwide. Known for their reliability and versatility, these devices help streamline document management tasks. However, they often come with default login credentials that are meant for initial setup purposes.
The default login credentials of Xerox Fuji/VersaLink devices pose a risk if not changed after installation. This scanner detects the presence of such default credentials, like "admin" as the username and "1111" or the device serial number as the password. Identifying these credentials on your network is vital to prevent unauthorized access.
This scanner conducts a POST request to test login endpoints using base64-encoded credentials. It checks for specific words and status codes in the response to ascertain a successful default login attempt. Key indicators include response body contents and certain status codes.
Exploiting the default login vulnerability can lead to unauthorized access, potentially exposing sensitive information. Malicious users might manipulate device settings, access confidential documents, or compromise network security.
REFERENCES
