CVSS: 7.5EPSS: 1%CPEs: 9EXPL: 0CVE-2006-2559
https://notcve.org/view.php?id=CVE-2006-2559
Linksys WRT54G Wireless-G Broadband Router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic. • http://secunia.com/advisories/20161 http://securitytracker.com/id?1016134 http://www.securityview.org/dutch-student-finds-a-bug-in-upnp.html http://www.securityview.org/how-does-the-upnp-flaw-works.html http://www.vupen.com/english/advisories/2006/1909 https://exchange.xforce.ibmcloud.com/vulnerabilities/26707 •
CVSS: 7.5EPSS: 63%CPEs: 2EXPL: 2CVE-2005-2799 – Linksys WRT54G < 4.20.7 / WRT54GS < 1.05.2 - 'apply.cgi' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-2799
Buffer overflow in apply.cgi in Linksys WRT54G 3.01.03, 3.03.6, and possibly other versions before 4.20.7, allows remote attackers to execute arbitrary code via a long HTTP POST request. • https://www.exploit-db.com/exploits/10028 https://www.exploit-db.com/exploits/16854 http://www.idefense.com/application/poi/display?id=305&type=vulnerabilities •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2915
https://notcve.org/view.php?id=CVE-2005-2915
ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, uses weak encryption (XOR encoding with a fixed byte mask) for configuration information, which could allow attackers to decrypt the information and possibly re-encrypt it in conjunction with CVE-2005-2914. • http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2912
https://notcve.org/view.php?id=CVE-2005-2912
Linksys WRT54G router allows remote attackers to cause a denial of service (CPU consumption and server hang) via an HTTP POST request with a negative Content-Length value. • http://www.idefense.com/application/poi/display?id=308&type=vulnerabilities •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2914
https://notcve.org/view.php?id=CVE-2005-2914
ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration. • http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities •