Belkin 54G Routers Admin Account Default Null Password

2005-07-15T03:43:15
ID OSVDB:18293
Type osvdb
Reporter Adrian Pastor(m123303@richmond.ac.uk)
Modified 2005-07-15T03:43:15

Description

Vulnerability Description

By default, many of Belkin wireless routers using a default ssid of "belkin54g" are preconfigured with a default password. The "admin" account has a null password which is publicly known and documented. This allows attackers to trivially access the program or system.

Solution Description

Immediately after installation, change all default passwords to a unique and secure password. When possible, change default accounts to custom names as well.

Short Description

By default, many of Belkin wireless routers using a default ssid of "belkin54g" are preconfigured with a default password. The "admin" account has a null password which is publicly known and documented. This allows attackers to trivially access the program or system.

References:

Vendor URL: http://www.belkin.com/ Security Tracker: 1014493 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0236.html ISS X-Force ID: 21412 CVE-2005-2374