Lucene search

[email protected]CVE-2004-2455

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2455

2004-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-2455

sweex

wireless broadband router

accesspoint

802.11g

lc000060

tftp

remote attackers

sensitive information

privileges

nvram file

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.4%

JSON

Sweex Wireless Broadband Router/Accesspoint 802.11g (LC000060) allows remote attackers to obtain sensitive information and gain privileges by using TFTP to download the nvram file, then extracting the username, password, and other data from the file.

CPENameOperatorVersion
sweex:wireless_broadband_router_accesspoint_802.11gsweex wireless broadband router accesspoint 802.11geqlc000060

CPE	Name	Operator	Version
sweex:wireless_broadband_router_accesspoint_802.11g	sweex wireless broadband router accesspoint 802.11g	eq	lc000060

References

archives.neohapsis.com/archives/fulldisclosure/2004-05/0574.html

secunia.com/advisories/11603

www.osvdb.org/6109

www.securityfocus.com/bid/10339

www.securitytracker.com/alerts/2004/May/1010143.html

exchange.xforce.ibmcloud.com/vulnerabilities/16140

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.4%

JSON