Vulnerability CVE-2004-2557


Published: 2004-12-31   Modified: 2012-02-12

Description:
NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Netgear -> Wg602 

 References:
http://secunia.com/advisories/11773
http://xforce.iss.net/xforce/xfdb/16312
http://www.securityfocus.com/bid/10459
http://www.securityfocus.com/archive/1/365230
http://www.osvdb.org/6743
http://www.ciac.org/ciac/bulletins/o-159.shtml
http://slashdot.org/articles/04/06/08/1319206.shtml?tid=126&tid=172
http://kbserver.netgear.com/kb_web_files/n101383.asp
http://archives.neohapsis.com/archives/bugtraq/2004-06/0036.html

Copyright 2024, cxsecurity.com

 

Back to Top