Lucene search

[email protected]CVE-2007-1585

HistoryMar 21, 2007 - 11:19 p.m.

CVE-2007-1585

2007-03-2123:19:00

[email protected]

web.nvd.nist.gov

linksys

wag200g

wrt54gc

sensitive information

data disclosure

udp

cve-2007-1585

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.6%

JSON

The Linksys WAG200G with firmware 1.01.01, WRT54GC 2 with firmware 1.00.7, and WRT54GC 1 with firmware 1.03.0 and earlier allow remote attackers to obtain sensitive information (passwords and configuration data) via a packet to UDP port 916. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

linksyswag200gMatch1.01.01

linksyswrt54gcRange≤1.03.0

linksyswrt54gcMatch1.00.7

CPENameOperatorVersion
linksys:wag200glinksys wag200geq1.01.01
linksys:wrt54gclinksys wrt54gcle1.03.0
linksys:wrt54gclinksys wrt54gceq1.00.7

CPE	Name	Operator	Version
linksys:wag200g	linksys wag200g	eq	1.01.01
linksys:wrt54gc	linksys wrt54gc	le	1.03.0
linksys:wrt54gc	linksys wrt54gc	eq	1.00.7

References

marc.info/?l=bugtraq&m=117492736903388&w=2

secunia.com/advisories/24658

www.securityfocus.com/archive/1/463342/100/0/threaded

www.securityfocus.com/bid/23063

exchange.xforce.ibmcloud.com/vulnerabilities/33251

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.3 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.6%

JSON

Related for CVE-2007-1585

securityvulns1 cvelist1 prion1 nvd1