Vulnerabilities > CVE-2004-1550 - Unspecified vulnerability in Motorola Wr850G 4.0.3Firmware
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN motorola
metasploit
Summary
Motorola Wireless Router WR850G running firmware 4.03 allows remote attackers to bypass authentication, log on as an administrator, and obtain sensitive information by repeatedly making an HTTP request for ver.asp until an administrator logs on.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Hardware | 1 |
Metasploit
| description | Login credentials to the Motorola WR850G router with firmware v4.03 can be obtained via a simple GET request if issued while the administrator is logged in. A lot more information is available through this request, but you can get it all and more after logging in. |
| id | MSF:AUXILIARY/ADMIN/MOTOROLA/WR850G_CRED |
| last seen | 2020-06-01 |
| modified | 2018-09-15 |
| published | 2008-10-06 |
| references | |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/admin/motorola/wr850g_cred.rb |
| title | Motorola WR850G v4.03 Credentials |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026791.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026791.html
- http://marc.info/?l=bugtraq&m=109613135105800&w=2
- http://marc.info/?l=bugtraq&m=109613135105800&w=2
- http://www.securityfocus.com/bid/11241
- http://www.securityfocus.com/bid/11241
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17474
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17474