Vulnerability CVE-2011-4499
Published: 2011-11-22   Modified: 2012-02-13

Description:
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.

Type:

CWE-16

 (Configuration)

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
Linksys -> Wrt54g 
Linksys -> Wrt54gs 
Cisco -> Linksys wrt54g router firmware 
Cisco -> Linksys wrt54gs router firmware 

 References:
http://www.kb.cert.org/vuls/id/357851
http://www.upnp-hacks.org/devices.html
Copyright 2024, cxsecurity.com

 

Back to Top