Lucene search

[email protected]CVE-2004-2557

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2557

2004-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

netgear

wg602

wireless access point

hardcoded credentials

security vulnerability

cve-2004-2557

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

87.8%

JSON

NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username “superman” and password “21241036”, which allows remote attackers to modify the configuration.

CPENameOperatorVersion
netgear:wg602netgear wg602eq1.7.14

CPE	Name	Operator	Version
netgear:wg602	netgear wg602	eq	1.7.14

References

archives.neohapsis.com/archives/bugtraq/2004-06/0036.html

kbserver.netgear.com/kb_web_files/n101383.asp

secunia.com/advisories/11773

slashdot.org/articles/04/06/08/1319206.shtml?tid=126&tid=172

www.ciac.org/ciac/bulletins/o-159.shtml

www.osvdb.org/6743

www.securityfocus.com/archive/1/365230

www.securityfocus.com/bid/10459

exchange.xforce.ibmcloud.com/vulnerabilities/16312

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

87.8%

JSON

Related for CVE-2004-2557

nessus1