CVE-2004-2606
First published: Fri Dec 31 2004(Updated: )
The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login to an administration web page, even when the configuration specifies that remote administration is disabled.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linksys WRT54G | =2.02.7 | |
| Linksys Befsr41 V3 |
Remedy
http://web.archive.org/web/20040823075750/http://www.linksys.com/download/firmware.asp?fwid=201
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://archives.neohapsis.com/archives/bugtraq/2004-05/0316.html
- http://archives.neohapsis.com/archives/bugtraq/2004-06/0002.html
- http://archives.neohapsis.com/archives/bugtraq/2004-06/0020.html
- http://www.securityfocus.com/archive/1/365175
- http://archives.neohapsis.com/archives/bugtraq/2004-06/0190.html
- http://www.securityfocus.com/archive/1/365227/30/0/threaded
- http://www.nwfusion.com/news/2004/0607confuse.html
- http://www.securityfocus.com/bid/10441
- http://www.osvdb.org/6577
- http://secunia.com/advisories/11754
- http://web.archive.org/web/20040823075750/http://www.linksys.com/download/firmware.asp?fwid=201
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16274
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/linksys
- canonical/linksys wrt54g
- version/linksys wrt54g/2.02.7
- canonical/linksys befsr41 v3