Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
BID:13051
Info
Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
| Bugtraq ID: | 13051 |
| Class: | Access Validation Error |
| CVE: |
CVE-2005-1059 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 07 2005 12:00AM |
| Updated: | Jul 12 2009 12:56PM |
| Credit: | Kristian Hermansen <[email protected]> is credited with the discovery of this issue. |
| Vulnerable: |
Linksys WET11 Wireless Ethernet Bridge 1.5.4 Linksys WET11 Wireless Ethernet Bridge 1.4.3 Linksys WET11 Wireless Ethernet Bridge |
| Not Vulnerable: | |
Discussion
Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
A remote authentication bypass vulnerability affects Linksys WET11. This issue is due to a failure of the application to validate authentication credentials when processing password change requests.
An attacker may leverage this issue to arbitrarily change the administration password of an affected device, facilitating a complete compromise of the device.
A remote authentication bypass vulnerability affects Linksys WET11. This issue is due to a failure of the application to validate authentication credentials when processing password change requests.
An attacker may leverage this issue to arbitrarily change the administration password of an affected device, facilitating a complete compromise of the device.
Exploit / POC
Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
No exploit is required. The following proof of concept has been provided to set a blank password:
http://www.example.com/changepw.html?data=........................
No exploit is required. The following proof of concept has been provided to set a blank password:
http://www.example.com/changepw.html?data=........................
Solution / Fix
Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Linksys WET11 Password Update Remote Authentication Bypass Vulnerability
References:
References: