Absolute Path Traversal Vulnerability in Linksys Wireless-B Internet Video Camera
CVE-2004-2507

Currently unrated

Key Information:

Vendor: Linksys
Status: Wvc11b
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2507?

The Linksys WVC11B Wireless-B Internet Video Camera is vulnerable to an absolute path traversal attack via the main.cgi component. By manipulating the next_file parameter, a remote attacker can exploit this vulnerability to gain unauthorized access and read arbitrary files on the device's filesystem. This flaw highlights the potential risks associated with unsecured web interfaces in network devices, emphasizing the need for stringent security measures to protect sensitive data.

References

http://secunia.com/advisories/11811/

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/16339

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/10476

vdb-entryx_refsource_BID

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 25, 2005
Vulnerability published
Dec 31, 2004