Access Bypass Vulnerability in Linksys WRT54G Router
CVE-2006-2559

Currently unrated

Key Information:

Vendor: Linksys
Status: Wrt54g; Wrt54g V5
Vendor: CVE Published:; 24 May 2006

Summary

The Linksys WRT54G Wireless-G Broadband Router exhibits a significant access bypass vulnerability that allows remote attackers to gain unauthorized access. This issue arises from insufficient validation of the InternalClient parameter within UPnP requests. Attackers can exploit this flaw to execute arbitrary commands and forward traffic, undermining the security of the router and potentially affecting the network it operates within.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/26707

vdb-entryx_refsource_XF

http://secunia.com/advisories/20161

third-party-advisoryx_refsource_SECUNIA

http://securitytracker.com/id?1016134

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
May 24, 2006
Vulnerability Reserved
May 23, 2006