Information Disclosure in GlobalSunTech Wireless Access Points by GlobalSunTech
CVE-2002-2137

Currently unrated

Key Information:

Vendor: Linksys
Status: Wap11; Gl2422ap-0t; Dwl-900ap\+; Gl2422 Ap
Vendor: CVE Published:; 31 December 2002

What is CVE-2002-2137?

GlobalSunTech Wireless Access Points are susceptible to an information disclosure vulnerability that allows remote attackers to exploit a specific request type made to UDP port 27155. This flaw can lead to unauthorized retrieval of sensitive data, including WEP keys, the administrator password, and MAC filtering information. Affected models include WISECOM GL2422AP-0T, along with various OEM products such as D-Link and Linksys access points. Organizations utilizing these devices should take immediate actions to mitigate potential risks.

References

http://www.securityfocus.com/bid/6100

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/10536.php

vdb-entryx_refsource_XF

http://online.securityfocus.com/archive/1/298432

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002