The Netgear WG602 Accesspoint contains an undocumented administrative account...
...Any user logging in with the username "super" and the password "5777364" is in complete control of the device.
NetGear has a patch out. This appears to have been put in by their Taiwanese OEM. This OEM makes other devices, I'd suggest reading the article and trying this on one's own router.
I have two routers in serial from two vendors. One can be controlled only via hardwired serial cable. I always thought I was being a bit overly cautious ...
This is worse than the usual Microsoft incompetence. The responsible OEM should be bankrupted. NetGear's web site doesn't say anything yet. That's probably the worse way to handle this. I don't think I'll be buying much from them in the future.
Post a Comment