CVE-2014-1408 Information

Description

The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account which makes it easier for remote attackers to obtain access via an HTTP request as demonstrated by stored XSS attacks.

Reference

http://antoniovazquezblanco.github.io/docs/advisories/Advisory_C54APM_Multiple.pdf http://download.conceptronic.net/manuals/C04-058_C54APM_v2.0_Quick_Guide_ML.pdf