CVE-2002-1810

Name of the Vulnerable Software and Affected Versions D-Link DWL-900AP+ Access Point versions 2.1 through 2.2

Description The issue allows remote attackers to access the TFTP server without authentication and read the config.img file. This file contains sensitive information, including the administrative password, WEP encryption keys, and network configuration information.

Recommendations For versions 2.1 and 2.2, consider restricting access to the TFTP server as a temporary workaround until a patch is available. Additionally, changing the administrative password and WEP encryption keys is recommended to minimize potential damage.