TFTP-based Remote Information Disclosure and Privilege Escalation in Sweex Wireless Broadband Router/Accesspoint 802.11g (LC000060)

TFTP-based Remote Information Disclosure and Privilege Escalation in Sweex Wireless Broadband Router/Accesspoint 802.11g (LC000060)

CVE-2004-2455 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Sweex Wireless Broadband Router/Accesspoint 802.11g (LC000060) allows remote attackers to obtain sensitive information and gain privileges by using TFTP to download the nvram file, then extracting the username, password, and other data from the file.

Learn more about our User Device Pen Test.