|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> US Robotics Disclosed Password Check Vulnerability Assessment Details
|
US Robotics Disclosed Password Check |
||
|
US Robotics Password Check Detailed Explanation for this Vulnerability Assessment Summary : The remote web server is affected by an information disclosure issue. Description : The remote host appears to be a US Robotics Broadband router. The device's administrator password is stored as plaintext in a Javascript function in the file '/menu.htm', which can be viewed by anyone. See also : http://archives.neohapsis.com/archives/bugtraq/2004-06/0109.html Solution: Disable the webserver or filter the traffic to the webserver via an upstream firewall. Network Security Threat Level: Critical / CVSS Base Score : 10 (AV:R/AC:L/Au:NR/C:C/A:C/I:C/B:N) Networks Security ID: 10490 Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security |
||
|
Home Networking, Cable & DSL |
|
||
|
No Discussions have been posted on this vulnerability. |