PT-2001-2354 · D Link · D-Link Dwl-1000Ap

Published

2001-12-21

Updated

2008-09-05

CVE-2001-1220

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link DWL-1000AP Firmware version 3.2.28

Description The issue concerns the storage of the administrative password in plaintext in the default Management Information Base (MIB) of the affected device. This allows remote attackers to gain administrative privileges.

Recommendations For D-Link DWL-1000AP Firmware version 3.2.28, consider changing the administrative password and restricting remote access to the Management Information Base (MIB) until a patch is available. As a temporary workaround, restrict access to the device's management interface to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-1220

Affected Products

D-Link Dwl-1000Ap

PT-2001-2354 · D Link · D-Link Dwl-1000Ap

CVE-2001-1220

Related Identifiers

Affected Products

References · 4