7.5

CVE-2004-2606

The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login to an administration web page, even when the configuration specifies that remote administration is disabled.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinksysWrt54g Version2.02.7
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.57% 0.831
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://ftp.linksys.com/pub/network/wrt54g_2.02.8_US_code_beta.zip
Patch
http://archives.neohapsis.com/archives/bugtraq/2004-05/0316.html
http://archives.neohapsis.com/archives/bugtraq/2004-06/0002.html
http://archives.neohapsis.com/archives/bugtraq/2004-06/0020.html
http://archives.neohapsis.com/archives/bugtraq/2004-06/0190.html
http://secunia.com/advisories/11754
Patch
Vendor Advisory
http://web.archive.org/web/20040823075750/http://www.linksys.com/download/firmware.asp?fwid=201
Patch
http://www.nwfusion.com/news/2004/0607confuse.html
http://www.osvdb.org/6577
http://www.securityfocus.com/archive/1/365175
http://www.securityfocus.com/archive/1/365227/30/0/threaded
http://www.securityfocus.com/bid/10441
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/16274