Published: 10/10/2006 Updated: 11/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Linksys WRT54g firmware 1.00.9 does not require credentials when making configuration changes, which allows remote malicious users to modify arbitrary configurations via a direct request to Security.tri, as demonstrated using the SecurityMode and layout parameters, a different issue than CVE-2006-2559.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linksys wrt54g 1.00.9

__ _ ____ ____ ___ ____ ____ ____ _____ ____ ____ _____ ___ | l/ ]l j| \ / \ | \l j| \ | T l j| \ | | / \ | ' / | T | _ YY Y| o )| T | _ Yl__/ | | T | _ Y| __jY Y | \ | | | | || Q || _/ | | | | || __j | | | | || l_ | O | | Y ...

The Linksys WRT54G (firmware 1009) suffers from multiple security bypass vulnerabilities ...

NVD-CWE-Other http://lists.grok.org.uk/pipermail/full-disclosure/2006-August/048495.html http://www.kb.cert.org/vuls/id/930364 http://www.securityfocus.com/bid/19347 http://securitytracker.com/id?1016638 http://secunia.com/advisories/21372 https://kinqpinz.info/lib/wrt54g/https://kinqpinz.info/lib/wrt54g/own2.txt https://www.exploit-db.com/exploits/5926 https://nvd.nist.gov https://www.exploit-db.com/exploits/5926/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-5202

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect