Security Bypass in Linksys WET11 by Cisco
CVE-2005-1059

Currently unrated

Key Information:

Vendor: Linksys
Status: Wet11
Vendor: CVE Published:; 2 May 2005

What is CVE-2005-1059?

The Linksys WET11 version 1.5.4 is susceptible to a security bypass vulnerability that permits remote attackers to alter the device password without the need for the original password. This can be achieved through manipulation of the data parameter in the changepw.html page. The flaw poses significant risks, allowing unauthorized access and control over the network device.

References

http://www.securityfocus.com/bid/13051

vdb-entryx_refsource_BID

http://secunia.com/advisories/14871

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/20008

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Apr 12, 2005