[38829] in bugtraq
Acrowave AAP-3100AR authetication bypass
daemon@ATHENA.MIT.EDU (Martin Tornwall)
Thu May 12 15:06:11 2005
Message-ID: <000901c55719$ac4c2f00$0400a8c0@MARTINSTAT>
From: "Martin Tornwall" <martin.tornwall@telia.com>
To: <bugtraq@securityfocus.com>
Date: Thu, 12 May 2005 19:40:22 +0200
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
I have found that It's possible to bypass the authentication on the Acrowave
AAP-3100AR wireless router.
By telnet'ing to the device and hitting CTRL + C at either the user name or
password prompt, I crashed
the shell, it was restarted and I was dropped to a prompt without entering
any user name or password.
