Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4500

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-4500
Last Modified 22 Nov 2011 12:00:00
Published 22 Nov 2011 06:55:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4500

Summary

The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOAP server to listen on the WAN port, which allows remote attackers to administer the firewall via SOAP requests.

Vulnerable Systems

Application

  • Cisco Linksys Wrt54gx Router Firmware 2.00.05


References

CERT-VN - VU#357851

MISC - http://www.upnp-hacks.org/devices.html


Last Updated: 27 May 2016 10:57:48