FTP Authentication Bypass in Linksys WRT54G 7 Router
CVE-2008-1268

Currently unrated

Key Information:

Vendor: Linksys
Status: Wrt54g
Vendor: CVE Published:; 10 March 2008

Summary

The FTP server on the Linksys WRT54G 7 router with firmware version 7.00.1 is susceptible to an authentication bypass vulnerability. This flaw allows remote attackers to gain unauthorized access to the FTP service by providing arbitrary username and password combinations, thus enabling them to establish a full FTP session without proper credentials. This vulnerability can lead to further security breaches, making it essential for users to ensure that their devices are updated to mitigate risks.

References

http://www.securityfocus.com/archive/1/489009/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.gnucitizen.org/projects/router-hacking-challenge/

x_refsource_MISC

http://swbae.egloos.com/1701135

x_refsource_MISC

Timeline

Vulnerability published
Mar 10, 2008
Vulnerability Reserved
Mar 10, 2008