Authentication Bypass in D-Link DSL Routers
CVE-2005-1680

Currently unrated

Key Information:

Vendor: D-link
Status: Dsl-504t; Dsl-562t; Dsl-g604t; Dsl-502t
Vendor: CVE Published:; 20 May 2005

What is CVE-2005-1680?

Certain D-Link DSL routers, including models DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, are susceptible to an authentication bypass vulnerability. This occurs when an attacker executes the /cgi-bin/firmwarecfg script under two specific conditions: either if their IP address is already present in the /var/tmp/fw_ip file or if their request is the first made, which leads to the creation of the /var/tmp/fw_ip file containing their IP address. This flaw allows unauthorized access to the router's configuration, potentially enabling remote attackers to alter settings without proper authentication.

References

http://marc.info/?l=bugtraq&m=111652806030943&w=2

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2005/0573

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2005
Vulnerability Reserved
May 20, 2005

D-link

What is CVE-2005-1680?

References

Timeline