ID
VAR-200312-0517
TITLE
NetGear WAB102 Wireless Access Point Password Management Vulnerability
Trust: 0.6
DESCRIPTION
The NetGear WAB102 is a wireless access AP. The NetGear WAB102 has multiple password management issues that can be exploited by remote attackers to gain unauthorized access to the device for various malicious operations. An attacker can access the device by providing any password that contains spaces. Another problem is that the default password '1234' is reset when the device is powered down and reset. NetGear WAB102 running firmware version 1.2.3 has been reported to be prone to this issue
Trust: 0.81
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | no | model: | - | scope: | - | version: | - | Trust: 0.6 |
| vendor: | netgear | model: | wab102 wireless access point | scope: | eq | version: | 1.2.3 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
THREAT TYPE
network
Trust: 0.3
TYPE
Access Validation Error
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 9194 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2003-3581 | Trust: 0.6 |
REFERENCES
| url: | http://marc.theaimsgroup.com/?l=bugtraq&m=107108373729482&w=2 | Trust: 0.6 |
| url: | http://www.netgear.com/ | Trust: 0.3 |
| url: | /archive/1/347092 | Trust: 0.3 |
CREDITS
The disclosure of this issue has been credited to Jon Kamm @hotmail <jonkamm@hotmail.com>.
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2003-3581 |
| db: | BID | id: | 9194 |
LAST UPDATE DATE
2022-05-17T01:57:27.177000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2003-3581 | date: | 2014-01-24T00:00:00 |
| db: | BID | id: | 9194 | date: | 2003-12-10T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2003-3581 | date: | 2003-12-10T00:00:00 |
| db: | BID | id: | 9194 | date: | 2003-12-10T00:00:00 |