PT-2011-4967 · Broadcom+1 · Broadcom Linux+1

Published

2011-11-22

Updated

2013-01-24

CVE-2011-4503

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sitecom WL-111

Description The issue concerns the UPnP IGD implementation in Broadcom Linux, allowing remote attackers to establish arbitrary port mappings. This is achieved by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, and is related to an "external forwarding" issue.

Recommendations For Sitecom WL-111, consider disabling the UPnP functionality as a temporary workaround until a patch is available. Restrict access to the WAN interface to minimize the risk of exploitation. Avoid using the external forwarding feature in the UPnP IGD implementation until the issue is resolved.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-16

Related Identifiers

CVE-2011-4503

Affected Products

Broadcom Linux

Sitecom Wl-111

PT-2011-4967 · Broadcom+1 · Broadcom Linux+1

CVE-2011-4503

Weakness Enumeration

Related Identifiers

Affected Products

References · 3