CVE-2001-1220 - OpenCVE

D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gain administrative privileges.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
D-link	Dwl-1000ap

Configuration 1 [-]

cpe:2.3:h:d-link:dwl-1000ap:3.2.28_483:*:*:*:*:*:*:*

References

Link	Resource
http://www.iss.net/security_center/static/7733.php	Vendor Advisory
http://www.securityfocus.com/archive/1/246849	Vendor Advisory
http://www.securityfocus.com/bid/3735	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2002-03-15T05:00:00

Updated: 2002-03-22T10:00:00

Reserved: 2002-03-15T00:00:00

Link: CVE-2001-1220

JSON object: View

NVD Information

Status : Analyzed

Published: 2001-12-21T05:00:00.000

Modified: 2008-09-05T20:25:59.470

Link: CVE-2001-1220

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2001-12-21T00:00:00", "descriptions": [{"lang": "en", "value": "D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gain administrative privileges."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2002-03-22T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20011221 D-Link DWL-1000AP can be compromised because of SNMP configuration", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/246849"}, {"name": "dlink-ap-public-mib(7733)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/7733.php"}, {"name": "3735", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/3735"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2001-1220", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "D-Link DWL-1000AP Firmware 3.2.28 #483 Wireless LAN Access Point stores the administrative password in plaintext in the default Management Information Base (MIB), which allows remote attackers to gain administrative privileges."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20011221 D-Link DWL-1000AP can be compromised because of SNMP configuration", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/246849"}, {"name": "dlink-ap-public-mib(7733)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/7733.php"}, {"name": "3735", "refsource": "BID", "url": "http://www.securityfocus.com/bid/3735"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2001-1220", "datePublished": "2002-03-15T05:00:00", "dateReserved": "2002-03-15T00:00:00", "dateUpdated": "2002-03-22T10:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}