Linksys Routers Administrative Web Interface Access

2004-05-31T07:57:50
ID OSVDB:6577
Type osvdb
Reporter Alan W. Rateliff(lists@rateliff.net)
Modified 2004-05-31T07:57:50

Description

Vulnerability Description

Linksys routers contain a flaw that may allow a malicious user to access the Remote Administration interface. The issue is triggered by the interface being available on port 443, even when Remote Administration is disabled. It is possible that the flaw may allow unauthorized administrative access resulting in a loss of integrity.

Solution Description

Upgrade to version 2.02.8 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Enable the integrated firewall.

Short Description

Linksys routers contain a flaw that may allow a malicious user to access the Remote Administration interface. The issue is triggered by the interface being available on port 443, even when Remote Administration is disabled. It is possible that the flaw may allow unauthorized administrative access resulting in a loss of integrity.

References:

Vendor Specific Solution URL: ftp://ftp.linksys.com/pub/network/wrt54g_2.02.8_US_code_beta.zip Secunia Advisory ID:11754 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-05/0316.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-06/0002.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-05/0324.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-06/0020.html Generic Informational URL: http://www.nwfusion.com/news/2004/0607confuse.html CVE-2004-2606 Bugtraq ID: 10441