Date: Fri, 26 Sep 2008 19:37:09 +0700
From: "Teh Kotak" <kotak.teh@gmail.com.>
To: [email protected]Subject: Linksys/Cisco WRT350N 1.0.3.7 Insecure Samba Static Configuration
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Virus-Scanned: antivirus-gw at tyumen.ru
As of today 25 September 2008, I am using the latest 1.0.3.7 firmware
for my region (Singapore), US also use this version.
1/ Outdated Samba 3.0.2, vulnerable to numerous security holes.
2/ Default admin:admin user
3/ Default open guest user, noway to disable it
4/ It is impossible to disable SAMBA completely! This is a wireless
access point/router... I don't want this insecure storage feature.
Cc: Full Disclosure, Bugtraq
