[原文]Motorola Wireless Router WR850G running firmware 4.03 allows remote attackers to bypass authentication, log on as an administrator, and obtain sensitive information by repeatedly making an HTTP request for ver.asp until an administrator logs on.
WR850G wireless router contains a flaw that may allow a remote attacker to log in with administrator access. The issue is triggered when the attacker repeatedly accesses the ver.asp file until a valid administrator logs in from a different IP, at which time the attacker gains administrator access to the device.
Upgrade to version 5.13 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Motorola WR850G wireless router is reported prone to a remote authentication bypass vulnerability. This issue is caused by a design error and may allow an attacker to ultimately take complete control over the device.
A remote attacker can gain access to the Web interface of the affected device by periodically attempting to access restricted pages such as the 'ver.asp' script.
Motorola wireless router WR850G running firmware version 4.03 is reportedly affected by this issue. It is possible that other models and firmware versions are affected as well.
An exploit is not required to leverage this issue.
The vendor has released firmware 5.13 to address this issue.