转自
https://websec.ca/publication/advisories/Huawei-web-backdoor-and-remote-accessModel: Huawei HG8245
Hardware version: 130C4600
Software version: V1R006C00S100
Date of publication: 12/09/2013
Severity: Very High
Solution: Disable WAN-side HTTP and Telnet access.
It is not possible to change the default web administrator's password for the user admin.
The backdoor is a web management account enabled by default and the password cannot be changed. In this version the default administrator password is:
admin:*6P0N4dm1nP4SS*
Another administrator user exists by default for the telnet service:
root:admin