Signature Detail
Short Name |
HTTP:MISC:NG-WG602-BACKDOOR |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Netgear WG602 |
Release Date |
2004/06/09 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Netgear WG602 Wireless Access Point Backdoor Access
This signature detects attempts to administer a Netgear WG602 using an undocumented administrator username/password that cannot be changed or disabled. Attackers can modify any setting on the WG602 to perform a denial-of-service (DoS) on the Netgear device or circumvent other access control protocols.
Extended Description
NETGEAR WG602 Access Point contains a default account and password that can be exploited to control the device. This account information is published and the account cannot be disabled.