Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2005-2914

ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration.

  • Published: Sep 14, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-2914
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
linksys / wrt54g 2.04.4 2.04.4.x
linksys / wrt54g 3.01.3 3.01.3.x
linksys / wrt54g 3.03.6 3.03.6.x