Insecure default configuration of WiFi access points D-Link
I'll be brief. On the DWL-3200AP points (probably also on the DWL-2100AP, DWL-2700AP), SNMP support is enabled by default with the names of ro / rw community, respectively, public / private.
OID 1.3.6.1.4.1.171.11.37.4.3.1.2.0 contains the password of the administrator of the access point in plain text.
Links
Reporting a similar vulnerability in DWL-1000AP, 2001
Post on Russian forum D-Link, 2006
')
Remarks
Letters to the Russian and then American support remained unanswered.
Morality
Always check all hardware and software settings with your own hands, do not trust them to manufacturers / authors / maintainers.
OID 1.3.6.1.4.1.171.11.37.4.3.1.2.0 contains the password of the administrator of the access point in plain text.
Links
Reporting a similar vulnerability in DWL-1000AP, 2001
Post on Russian forum D-Link, 2006
')
Remarks
Letters to the Russian and then American support remained unanswered.
Morality
Always check all hardware and software settings with your own hands, do not trust them to manufacturers / authors / maintainers.
Source: https://habr.com/ru/post/75668/
All Articles