PT-2003-2291 · D Link · Airplus Access Point Manager+1

Jason Tedesco

Published

2003-12-31

Updated

2017-07-29

CVE-2003-1346

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link wireless access point DWL-900AP+ versions 2.2 through 2.5

Description The issue allows remote attackers to set factory default settings by upgrading the firmware using AirPlus Access Point Manager.

Recommendations For version 2.2, avoid using the AirPlus Access Point Manager to upgrade firmware until a fix is available. For version 2.3, restrict access to the firmware upgrade feature in the AirPlus Access Point Manager. For version 2.5, consider disabling the AirPlus Access Point Manager until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2003-1346

Affected Products

Airplus Access Point Manager

Dwl-900Ap+

PT-2003-2291 · D Link · Airplus Access Point Manager+1

CVE-2003-1346

Weakness Enumeration

Related Identifiers

Affected Products

References · 6