Title: D-Link DWL-1000AP Wireless LAN Access Point Plaintext Password Vulnerability
Severity: HIGH
Description:
D-Link DWL-1000AP is a 11Mbps wireless LAN access point product, which is geared towards home users. It supports WEP, MAC address control and user authentication.
This product is prone to a serious vulnerability which may allow an attacker to hijack the access point.
The administrative password is stored in plaintext in the default "public" MIB. Any attacker within range, using a SNMP client, can reveal the administrative password by browsing the information stored in the "public" MIB. This information is stored as a string value in OID
1.3.6.1.4.1.937.2.1.2.2.0.
With the administrative password, it is possible for an attacker to gain access to the wireless network, change the configuration of the device, or cause a denial of service.
The issue is further complicated by BugTraq ID 3736, "D-Link DWL-1000AP Wireless LAN Access Point Public Community String Vulnerability".
This issue has been confirmed with the 3.2.28 #483 (Aug 23
2001) firmware. Other versions of the firmware may also be affected.
Affected Products:
- D-Link DWL-1000AP Firmware 3.2.28 #483
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
