Intrusion Prevention

GlobalSunTech.Access.Point.Information.Disclosure

Description

GlobalSunTech access points has an information disclosure vulnerability. A remote attacker could cause sensitive information to be returned, such as the device's WEP encryption keys, MAC address, and administrative password, by sending a specially-crafted UDP packet to port 27155.

Affected Products

Wisecom GL2422AP-0T Any version
Linksys WAP11 version 2.2
D-Link DWL-900AP+ 2.2

Impact

Obtain Information.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.globalsuntech.com/

CVE References

CVE-2002-2137