Users of Embedded Web Server HTTP1.0 please be advised of a Common consumer routers password disclosure vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)
Amplify’d from www.criticalwatch.com
Routers-SA-11/05/2010: Common consumer routers password disclosure
Product:Embedded Web Server HTTP1.0
Vulnerability Type: Password disclosure
Vulnerability Details:
Common consumer routers Web Management Interface, allows internet access password disclosure simply by inspecting the
DSL password <INPUT> field with development tools such as Safari Web Inspector or Firebug.Read more at www.criticalwatch.com
See this Amp at http://amplify.com/u/evtb
No comments:
Post a Comment