« Nokia 6600 Available for Less Than $100 at Amazon.com | Main | al Qaeda Operatives Continue to be Nabbed as a Result of Cell Phone Use »

Security Consultants Urge Linksys WRT54G Owners to Change Configuration from Default

Wi-Fi Networking News reports that a consultant has discovered a "moderately critical" security vulnerability in the Linksys WRT54G router. According to the report, the Linksys WRT54G "allows remote, over-the-Internet administration login even when remote management is turned off." This means that an automated attack could be mounted against WRT54G routers that were installed in their default configurations.

If an attack of this nature were to occur, it would pose an inconvenience to users who are accustomed to being able to use WRT54G routers for LAN or Internet access. The router could be reconfigured so that it was unusable by the people that originally installed it. Under that circumstance, control of the router could be regained by performing a "hard reset".

A more sophisticated attack might involve parsing the HTML from the WRT54G administrative interface to recover WEP or WPA keys. The existence of such keys would mean that the configuration had been changed from the default, however. It's unlikely that a user would turn on WEP or WPA and leave the admin password set to the default.

In any case, it's a very good idea for WRT54G users to review the configuration of their routers at this time.

Posted by Dave Aiello on June 2, 2004 3:37 PM | AddThis

TrackBack

TrackBack URL for this entry:
http://www.operationgadget.com/spamfw.php?tb_id=861

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Categories

Search



Welcome to Operation Gadget

Operation Gadget is a weblog dedicated to news and reviews of electronic gadgets and technology used in sports.

Syndicate

XML Subscribe to the Operation Gadget headlines with your headline reader.

Add to My Yahoo! Add Operation Gadget to your My Yahoo!.

Got a tip for Operation Gadget?

email: tips@operationgadget.com
AIM: OperGadget

Bloggers Comment on Operation Gadget

"... Lots of cool toys, well described to feed your gotta-have-one impulse."

The Doc Searls Weblog

"...a blog filled with the reviews of the latest and greatest things from geeky toyland. Hopefully it will help me expand my ever-shrinking Amazon wishlist and help get me some good ideas for other folks on the Nice list."

compulsive.org

"... a cool resource for anyone interested in the latest cool electronic toys; including a section solely devoted to fitness gadgets. Check it out..."

Joel McNamara

Credits

editor and publisher: Dave Aiello
west coast bureau chief: Martin O'Donnell

Copyright © 2003-2006, Chatham Township Data Corporation. All Rights Reserved.

"Operation Gadget" is a service mark of Chatham Township Data Corporation.

All other products and company names mentioned on Operation Gadget may be trademarks of their respective owners. Any comments posted to Operation Gadget are the legal responsibility of the person that posted them. Comments may be removed from this system at any time, at the sole discretion of Chatham Township Data Corporation or its authorized agents.

Powered by
Movable Type 3.2

Site designed by Weblog Improvement