Remote Access Vulnerability in Linksys WRT54G Router
CVE-2005-2914

Currently unrated

Key Information:

Vendor: Linksys
Status: Wrt54g
Vendor: CVE Published:; 14 September 2005

Summary

The Linksys WRT54G router suffers from a security flaw in the ezconfig.asp file that affects multiple versions. This vulnerability arises due to the absence of an authentication initialization function, enabling remote attackers to gain unauthorized access to encrypted configuration information. If attackers possess the decryption key, they can modify critical router configurations, potentially leading to further exploitation of the network.

References

http://www.idefense.com/application/poi/display?id=304&ty...

third-party-advisoryx_refsource_IDEFENSE

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 14, 2005