CVE-2002-2137

Description

GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11-V2.2, allow remote attackers to obtain sensitive information like WEP keys, the administrator password, and the MAC filter via a "getsearch" request to UDP port 27155.

Affected products

• alloy / gl-2422ap-s
• D-Link / dwl-900ap+b1_2.1 – b1_2.1
• D-Link / dwl-900ap+b1_2.2 – b1_2.2
• eusso / gl2422_ap
• linksys / wap112.2 – 2.2
• wisecom / gl2422ap-0t

References

• MISChttp://www.securityfocus.com/bid/6100
• MISChttp://www.iss.net/security_center/static/10536.php
• MISChttp://online.securityfocus.com/archive/1/298432