CVE-2004-2557
NetGear WG602 1.7.14 - Unauthenticated Hardcoded Credentials
Title source: llmDescription
NetGear WG602 (aka WG602v1) Wireless Access Point 1.7.14 has a hardcoded account of username "superman" and password "21241036", which allows remote attackers to modify the configuration.
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/365230
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/10459
Exploit mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2004-06/0036.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16312
Exploit x_refsource_misc
http://slashdot.org/articles/04/06/08/1319206.shtml?tid=126&tid=172
Various Sources x_refsource_confirm
http://kbserver.netgear.com/kb_web_files/n101383.asp
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/6743
Third Party Advisory, US Government Resource third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/o-159.shtml
Exploit, Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/11773
Scores
EPSS
0.0118
EPSS Percentile
79.0%
Details
Status
published
Products (1)
netgear/wg602
1.7.14
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026