ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:22:49
Updated: 2022-10-03T16:22:49
Reserved: 2022-10-03T00:00:00
Link: CVE-2005-2914
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-09-14T21:03:00.000
Modified: 2008-09-05T20:52:58.890
Link: CVE-2005-2914
JSON object: View
Redhat Information
No data.
CWE