PT-2004-3497 · Linksys · Linksys Wrt54G+1

Published

2004-12-31

Updated

2017-07-11

CVE-2004-2606

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Linksys WRT54G version 2.02.7 Linksys BEFSR41 version 3

Description The issue allows remote attackers to attempt to login to an administration web page, even when the configuration specifies that remote administration is disabled, by exploiting the Web interface with the firewall disabled.

Recommendations For Linksys WRT54G version 2.02.7, enable the firewall to prevent remote access to the administration web page. For Linksys BEFSR41 version 3, enable the firewall to prevent remote access to the administration web page.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-2606

Affected Products

Linksys Befsr41

Linksys Wrt54G

PT-2004-3497 · Linksys · Linksys Wrt54G+1

CVE-2004-2606

Related Identifiers

Affected Products

References · 14