Vulnerabilities > CVE-2002-2355 - Credentials Management vulnerability in Netgear Fm114P

CVSS 7.1 - HIGH

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

NONE

Availability impact

NONE

network

netgear

CWE-255

NVD

Published: 2002-12-31

Updated: 2008-09-05

Summary

Netgear FM114P firmware 1.3 wireless firewall, when configured to backup configuration information, stores DDNS (DynDNS) user name and password, MAC address filtering table and possibly other information in cleartext, which could allow local users to obtain sensitive information.

Vulnerable Configurations

Part	Description	Count
Hardware	Netgear Netgear Fm114P *	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://www.iss.net/security_center/static/10341.php
http://www.securityfocus.com/archive/1/294740
http://www.securityfocus.com/bid/5943