Linksys WiFi Gateway Remote Attack Risk Discovered

Glenn Fleishman writes "According to InternetNews.com, a tech consultant discovered that even if you turn the remote administration feature off on a Linksys WRT54G -- the single bestselling Wi-Fi device in the world -- you can still remotely access it through ports 80 and 443. Linksys sets the HTTP username to nothing and password to 'admin' on all of its devices by default. Web site scanning from anywhere in the world to devices that have routable Internet-facing addresses would allow script kiddie remote access, at which point you could flash the unit with new firmware, extract the WEP or WPA key, or just mess up someone's configuration and change the password."

Moderators on drugs again?

> Mine does

Nice troll. Too bad the idiot moderators keep giving points to trolls! I used to work for Linksys, and not a single wireless product we sold had the ability to turn-off SSID. We (the tech support people) complained non-stop about the security problems with our products. We saw it every single damn day, but the management didn't give a damn. Again, nice troll.

Come-on moderators, if you don't have any experience at all with something, don't moderator posts about it!

Re:All your gateways are belong to us

[tedgyz]

In Soviet Russia, we belong to all your gateways.

All you whiners should spend more time earning karma so you can actually mod me down. Instead, all you can do is cry in your beer to help you forget your inferiority complex.