Computer Security
[EN] securityvulns.ru no-pyccku


Multiple Linksys/ ZyXel / Edimax / Sitecom routers UPnP problems
updated since 23.05.2006
Published:14.10.2006
Source:
SecurityVulns ID:6177
Type:remote
Threat Level:
7/10
Description:UPnP AddPortMapping request requires no authentication. It makes it possible to create mapping between any external port and internal IP/port. Additionally, insufficient paramters validation allows code execution on router itself.
Affected:LINKSYS : WRT54G
 ZYXEL : P-335WT
 EDIMAX : BR-6104K
 SITECOM : WL-153 MIMO XR
 LINKSYS : WRT54GX2
Original documentdocumentSECUNIA, [SA22326] Linksys WRT54GXv2 Insecure Universal Plug and Play Configuration (14.10.2006)
Files:How does the UPnP flaw works

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod