|
Family: Misc. --> Category: infos
Netgear ProSafe Router password disclosure Vulnerability Scan
Vulnerability Scan Summary Enumerates user and password via soap
Detailed Explanation for this Vulnerability Test
The NetGear FM114P ProSafe Wireless Router (and possibly other devices)
discloses the username and password of the WAN when it receives specially
crafted upnp soap requests.
A possible hacker may use this flaw to steal a valid username and password.
In additition to this, a possible hacker may use upnp to disable the firewall
rules of that device, thus bypassing the security policy that has been
set.
Solution : Disable remote management or upnp
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|