Buffalo Linkstation (and various other Buffalo products) suffer from a privilege escalation vulnerability where a permanent guest account can be used to change the administrative password.
f44c4b344c2520f3a2486cf44d535e312b8c1fef9a6529e1abdbc45dbca66622