Linksys WET11 - Password Update Remote Authentication Bypass

EDB-ID:

25359


Platform:

Hardware

Published:

2005-04-07

source: http://www.securityfocus.com/bid/13051/info

A remote authentication bypass vulnerability affects Linksys WET11. This issue is due to a failure of the application to validate authentication credentials when processing password change requests.

An attacker may leverage this issue to arbitrarily change the administration password of an affected device, facilitating a complete compromise of the device. 

http://www.example.com/changepw.html?data=........................