CVE-2004-1791 - OpenCVE

The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Edimax	Full Rate Adsl Router

Configuration 1 [-]

cpe:2.3:h:edimax:full_rate_adsl_router:ar_6004:*:*:*:*:*:*:*

References

Link	Resource
http://securitytracker.com/id?1008643	Exploit
http://www.osvdb.org/3511
http://www.securityfocus.com/archive/1/349089	Exploit

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:14:10

Updated: 2022-10-03T16:14:10

Reserved: 2022-10-03T00:00:00

Link: CVE-2004-1791

JSON object: View

NVD Information

Status : Analyzed

Published: 2004-12-31T05:00:00.000

Modified: 2008-09-05T20:42:21.977

Link: CVE-2004-1791

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T16:14:10", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20040106 EDIMAX AR-6004 Full Rate ADSL Router Cross Site Scripting Vulnerabillity", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/349089"}, {"name": "3511", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/3511"}, {"name": "1008643", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1008643"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-1791", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20040106 EDIMAX AR-6004 Full Rate ADSL Router Cross Site Scripting Vulnerabillity", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/349089"}, {"name": "3511", "refsource": "OSVDB", "url": "http://www.osvdb.org/3511"}, {"name": "1008643", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1008643"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-1791", "datePublished": "2022-10-03T16:14:10", "dateReserved": "2022-10-03T00:00:00", "dateUpdated": "2022-10-03T16:14:10", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}