Default FTP Password Vulnerability in Linksys WRT54G Router
CVE-2008-1264

Currently unrated

Key Information:

Vendor: Linksys
Status: Wrt54g
Vendor: CVE Published:; 10 March 2008

What is CVE-2008-1264?

The Linksys WRT54G router is susceptible to unauthorized access due to its 'admin' default FTP password. This vulnerability enables remote attackers to exploit the FTP service and retrieve sensitive files, including nvram.cfg, which contains critical configuration data, as well as other HTML documents. The exposure of these files can lead to further attacks and compromise the device's integrity.

References

http://www.securityfocus.com/archive/1/489009/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.gnucitizen.org/projects/router-hacking-challenge/

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/41126

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 10, 2008
Vulnerability Reserved
Mar 10, 2008