CVE-2004-2557 - NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superm

CVE-2004-2557

Summary

NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration.

References

Vulnerable Configurations

cpe:2.3:h:netgear:wg602:1.7.14:*:*:*:*:*:*:*
cpe:2.3:h:netgear:wg602:1.7.14:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 11-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:P/A:N

refmap via4

bid	10459
bugtraq	20040603 Netgear WG602 Accesspoint vulnerability 20040605 Re: Netgear WG602 Accesspoint vulnerability
ciac	O-159
confirm	http://kbserver.netgear.com/kb_web_files/n101383.asp
misc	http://slashdot.org/articles/04/06/08/1319206.shtml?tid=126&tid=172
osvdb	6743
secunia	11773
xf	netgearwg602-default-account(16312)

Last major update

11-07-2017 - 01:32

Published

31-12-2004 - 05:00

Last modified

11-07-2017 - 01:32