Vulnerabilities > Linksys
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-09-14 | CVE-2005-2915 | Remote Security vulnerability in Linksys Wrt54G 2.04.4Nondefault/3.01.3/3.03.6 ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak encryption (XOR encoding with a fixed byte mask) for configuration information, which could allow attackers to decrypt the information and possibly re-encrypt it in conjunction with CVE-2005-2914. | 5.0 |
| 2005-09-14 | CVE-2005-2914 | Remote Security vulnerability in Linksys Wrt54G 2.04.4/3.01.3/3.03.6 ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration. | 7.5 |
| 2005-09-14 | CVE-2005-2912 | Denial-Of-Service vulnerability in Linksys Wrt54G 3.01.3/3.03.6/4.00.7 Linksys WRT54G router allows remote attackers to cause a denial of service (CPU consumption and server hang) via an HTTP POST request with a negative Content-Length value. | 5.0 |
| 2005-08-17 | CVE-2005-2589 | Authentication Bypass vulnerability in Linksys Wrt54Gs 4.50.6 Unknown vulnerability in Linksys WRT54GS wireless router with firmware 4.50.6, with WPA Personal/TKIP authentication enabled, allows remote clients to bypass authentication by connecting without using encryption. | 7.5 |
| 2005-08-03 | CVE-2005-2434 | Unspecified vulnerability in Linksys Wrt54G Linksys WRT54G router uses the same private key and certificate for every router, which allows remote attackers to sniff the SSL connection and obtain sensitive information. | 5.0 |
| 2005-05-02 | CVE-2005-1059 | Remote Authentication Bypass vulnerability in Linksys WET11 Password Update Linksys WET11 1.5.4 allows remote attackers to change the password without providing the original password via the data parameter to changepw.html. | 2.1 |
| 2005-05-02 | CVE-2005-0334 | Unspecified vulnerability in Linksys Psus4 Printserver 6032 Linksys PSUS4 running firmware 6032 allows remote attackers to cause a denial of service (device crash) via an HTTP POST request containing an unknown parameter without a value. | 5.0 |
| 2004-12-31 | CVE-2004-2606 | Remote Administration Service Weakness in Linksys WRT54G Router World Accessible The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login to an administration web page, even when the configuration specifies that remote administration is disabled. | 7.5 |
| 2004-12-31 | CVE-2004-2508 | Cross-Site Scripting vulnerability in Linksys Wvc11B 2.10 Cross-site scripting (XSS) vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to inject arbitrary web script or HTML via the next_file parameter. network linksys | 4.3 |
| 2004-12-31 | CVE-2004-2507 | Unspecified vulnerability in Linksys Wvc11B 2.10 Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an absolute pathname in the next_file parameter. | 5.0 |