Full Disclosure mailing list archives

Re: Netgear WG602 Accesspoint vulnerability

From: Rip Toren <rtoren () futures-inc com>
Date: Sun, 6 Jun 2004 15:42:00 -0400

Folks;
  I found a new firware update on the Netgear product support page that removes this
account, along with a couple of other fixes. 
  I upgraded, and the login is no longer available. Good, quick response.....


Quoting Tom Knienieder <knienieder () khamsin ch>:



KHAMSIN Security News
KSN Reference: 2004-06-03 0001 TIP
---------------------------------------------------------------------------

Title
-----
        The Netgear WG602 Accesspoint contains an undocumented
        administrative account.

Date
----
        2004-06-03


Description
-----------

The webinterface which is reachable from both interfaces (LAN/WLAN)
contains an undocumented administrative account which cannot be disabled.

Any user logging in with the username "super" and the password "5777364"
is in complete control of the device.

This vulnerability can be exploited by any person which is able to reach
the webinterface of the device with a webbrowser.

A search on Google revealed that "5777364" is actually the phonenumber
of z-com Taiwan which develops and offers WLAN equipment for its OEM
customers.

Currently it is unknown whether other Vendors are shipping products
based on z-com OEM designs.

   <<snip>>

-- 
Rip Toren
Senior Information Assurance Engineer
Futures Inc.
phone: 410-340-4033
email: rtoren () futures-inc com
website:  http://www.futures-inc.com
-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
This email is for the intended recipient only.  If you have received
this email and you are not the intended recipient, please contact the
originating party and delete the email message.  Thank you.  Futures Inc.
--------------------------------------------------------------------------


-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Netgear WG602 Accesspoint vulnerability Tom Knienieder (Jun 03)
- Re: Netgear WG602 Accesspoint vulnerability Lupe Christoph (Jun 03)
  - Re: Netgear WG602 Accesspoint vulnerability James Garrison (Jun 05)
    - Re: Re: Netgear WG602 Accesspoint vulnerability Jan Jungnickel (Jun 07)
    - Re: Re: Netgear WG602 Accesspoint vulnerability pera (Jun 08)
    - Re: Re: Netgear WG602 Accesspoint vulnerability Jan Jungnickel (Jun 08)
    - Re: Re: Netgear WG602 Accesspoint vulnerability Rip Toren (Jun 08)
    - Re: Re: Netgear WG602 Accesspoint vulnerability die tuere (Jun 08)
  - Re: Netgear WG602 Accesspoint vulnerability James Garrison (Jun 05)
- Re: Netgear WG602 Accesspoint vulnerability Lupe Christoph (Jun 05)
- Re: Netgear WG602 Accesspoint vulnerability Rip Toren (Jun 06)
- <Possible follow-ups>
- RE: Re: Netgear WG602 Accesspoint vulnerability Jan-Peter Koopmann (Jun 06)