Heads up, ye owners of the popular Linksys WRT54G Wireless-G Broadband Router. Even if you disable remote administration, the router will still allow users sharing your WiFi network to access administration web pages. That’s not the end of the world unless you haven’t changed your admin password, which if you’re like most of us, coddled by fire-and-forget technology, you probably haven’t. If you aren’t taking any more steps to secure your router, at least do yourself a favor and change the default password to something else, preferably not the name of a pet, child, or the lady down the hall you’ve been sleeping with that you think, hey, nobody knows about but really, seriously, we all totally know.
Update: Looks like it’s not quite as bad as it could be, as the exploit only works if the built-in firewall has been disabled (it defaults to on). Still, wouldn’t this be a great time to verify your settings?
Read [LinksysInfo]
