Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1810

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1810
Last Modified 05 Sep 2008 04:31:34
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1810

Summary

D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration information.

Vulnerable Systems


References

BID - 6015

XF - dlink-tftp-obtain-information(10424)


Last Updated: 27 May 2016 10:37:30