Slashdot Mirror


Linksys WiFi Gateway Remote Attack Risk Discovered

Glenn Fleishman writes "According to InternetNews.com, a tech consultant discovered that even if you turn the remote administration feature off on a Linksys WRT54G -- the single bestselling Wi-Fi device in the world -- you can still remotely access it through ports 80 and 443. Linksys sets the HTTP username to nothing and password to 'admin' on all of its devices by default. Web site scanning from anywhere in the world to devices that have routable Internet-facing addresses would allow script kiddie remote access, at which point you could flash the unit with new firmware, extract the WEP or WPA key, or just mess up someone's configuration and change the password."

1 of 311 comments (clear)

  1. Re:Well... by Zonekeeper · · Score: -1, Flamebait

    Assumption is the mother of all f***-ups. The average home computer user is lucky they remember how to breathe most days. After dealing with the 'average' user as an ISP for several years, I don't know how some of of these mouth-breathers know to reproduce. The world will run out of people who don't know how to properly maintain a computer about the same time the sun becomes a chunk of cold black coal.