Linksys wireless routers information leak
Published:		22.03.2007
Source:		BUGTRAQ
SecurityVulns ID:		7441
Type:		remote
Level:		6/10
Description:		Configuration information, including whole set of password is returned by request to UDP/916 port.

Affected:		CISCO : Linksys WAG200G
CVE:		CVE-2007-1585 (The Linksys WAG200G with firmware 1.01.01, WRT54GC 2 with firmware 1.00.7, and WRT54GC 1 with firmware 1.03.0 and earlier allow remote attackers to obtain sensitive information (passwords and configuration data) via a packet to UDP port 916. NOTE: some of these details are obtained from third party information.)

Original document

dniggebrugge_(at)_hotmail.com, Linksys WAG200G - Information disclosure (22.03.2007)

Discuss:

Read or add your comments to this news (1 comments)