Slashdot Mirror


Flaw In Netgear Wi-Fi Routers Exposes Admin Password, WLAN Details

An anonymous reader writes A number of Netgear home wireless routers sport a vulnerability that can be misused by unauthenticated attackers [here's the report at seclists.org] to obtain the administrator password, device serial number, WLAN details, and various details regarding clients connected to the device, claims systems/network engineer Peter Adkins. The vulnerability is found in the embedded SOAP service, which is a service that interacts with the Netgear Genie application that allows users to control (change WLAN credentials, SSIDs, parental control settings, etc.) their routers via their smartphones or computers.

1 of 57 comments (clear)

  1. Re: Why would any novice by adolf · · Score: 1, Flamebait

    Hasn't that always been the case?

    They struck gold with the WRT54G and WRT54GS (I still have a modded GS as a spare). But everything before or since has been garbage.

    Their nics are garbage, their switches always suck, and their early routers largely didn't route.

    Just sayin'.