Re: FYI: Linksys router vulnerability

2002-12-11 Thread Craig Dickson
Derrick 'dman' Hudson wrote: > They don't even need to do that. All that is needed is for you to > view a maliciously crafted HTML page. If you don't have javascript > enabled then you would need to click on a link or submit a form as > well. Okay. So that's an argument for changing the router'

Re: FYI: Linksys router vulnerability

2002-12-11 Thread Derrick 'dman' Hudson
On Wed, Dec 11, 2002 at 07:54:39AM -0800, Craig Dickson wrote: | Josh Rehman wrote: | | > It's interesting, the advisory claims that this can be exploited even | > when remote admin is disabled. I tried to break my own router with their | > advice, but it didn't work. (Maybe a kind soul has alread

RE: FYI: Linksys router vulnerability

2002-12-11 Thread Matthias Hentges
Am Mit, 2002-12-11 um 08.27 schrieb Josh Rehman: > It's interesting, the advisory claims that this can be exploited even > when remote admin is disabled. I tried to break my own router with their > advice, but it didn't work. (Maybe a kind soul has already cracked my > router and updated my firmwar

Re: FYI: Linksys router vulnerability

2002-12-11 Thread Craig Dickson
Josh Rehman wrote: > It's interesting, the advisory claims that this can be exploited even > when remote admin is disabled. I tried to break my own router with their > advice, but it didn't work. (Maybe a kind soul has already cracked my > router and updated my firmware for me? :-) > > Presumably

RE: FYI: Linksys router vulnerability

2002-12-10 Thread Josh Rehman
ckson [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, December 10, 2002 9:52 PM > To: [EMAIL PROTECTED] > Cc: Derrick 'dman' Hudson > Subject: Re: FYI: Linksys router vulnerability > > Derrick 'dman' Hudson wrote: > > > While this isn't about debian, there a

Re: FYI: Linksys router vulnerability

2002-12-10 Thread Craig Dickson
Derrick 'dman' Hudson wrote: > While this isn't about debian, there are probably a good number of > debian users who have Linksys router devices on their home network. > Well, that router may be insecure : > http://www.corest.com/common/showdoc.php?idx=263&idxseccion=10 Old news, and these bu

FYI: Linksys router vulnerability

2002-12-10 Thread Derrick 'dman' Hudson
While this isn't about debian, there are probably a good number of debian users who have Linksys router devices on their home network. Well, that router may be insecure : http://www.corest.com/common/showdoc.php?idx=263&idxseccion=10 -D -- Microsoft encrypts your Windows NT password when sto