CVE-2005-2914

ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration.
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:linksys:wrt54g:2.04.4:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:3.01.3:*:*:*:*:*:*:*
cpe:2.3:h:linksys:wrt54g:3.03.6:*:*:*:*:*:*:*

History

21 Nov 2024, 00:00

Type Values Removed Values Added
References () http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities - () http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities -

Information

Published : 2005-09-14 21:03

Updated : 2024-11-21 00:00


NVD link : CVE-2005-2914

Mitre link : CVE-2005-2914

CVE.ORG link : CVE-2005-2914


JSON object : View

Products Affected

linksys

  • wrt54g