CVE-2005-1680 - Vulnerability Details - OpenCVE

ReportizFlow

D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
D-link	Dsl-502t Dsl-504t Dsl-562t Dsl-g604t

Configuration 1 [-]

OR	cpe:2.3:h:d-link:dsl-502t::::::::
	cpe:2.3:h:d-link:dsl-504t::::::::
	cpe:2.3:h:d-link:dsl-562t::::::::
	cpe:2.3:h:d-link:dsl-g604t::::::::

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=111652806030943&w=2
http://www.vupen.com/english/advisories/2005/0573

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-05-25T04:00:00

Updated: 2024-08-07T21:59:24.058Z

Reserved: 2005-05-20T00:00:00

Link: CVE-2005-1680

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-05-20T04:00:00.000

Modified: 2024-11-20T23:57:53.173

Link: CVE-2005-1680

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-05-19T00:00:00", "descriptions": [{"lang": "en", "value": "D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20050519 D-Link DSL routers authentication bypass", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=111652806030943&w=2"}, {"name": "ADV-2005-0573", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/0573"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2005-1680", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20050519 D-Link DSL routers authentication bypass", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=111652806030943&w=2"}, {"name": "ADV-2005-0573", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/0573"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T21:59:24.058Z"}, "title": "CVE Program Container", "references": [{"name": "20050519 D-Link DSL routers authentication bypass", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=111652806030943&w=2"}, {"name": "ADV-2005-0573", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/0573"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-1680", "datePublished": "2005-05-25T04:00:00", "dateReserved": "2005-05-20T00:00:00", "dateUpdated": "2024-08-07T21:59:24.058Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:d-link:dsl-502t:*:*:*:*:*:*:*:*", "matchCriteriaId": "EC426441-982E-4AD0-8CE8-AD4E72CD0DB3", "vulnerable": true}, {"criteria": "cpe:2.3:h:d-link:dsl-504t:*:*:*:*:*:*:*:*", "matchCriteriaId": "C00981E3-CF35-41A4-80E2-1086D3540B38", "vulnerable": true}, {"criteria": "cpe:2.3:h:d-link:dsl-562t:*:*:*:*:*:*:*:*", "matchCriteriaId": "271FA6C5-A5A0-40A2-BFBB-103CE6826282", "vulnerable": true}, {"criteria": "cpe:2.3:h:d-link:dsl-g604t:*:*:*:*:*:*:*:*", "matchCriteriaId": "70A13C0C-C808-41AC-8AB2-E04DF1669086", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address."}], "id": "CVE-2005-1680", "lastModified": "2024-11-20T23:57:53.173", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-05-20T04:00:00.000", "references": [{"source": "[email protected]", "url": "http://marc.info/?l=bugtraq&m=111652806030943&w=2"}, {"source": "[email protected]", "url": "http://www.vupen.com/english/advisories/2005/0573"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=111652806030943&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2005/0573"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "[email protected]", "type": "Primary"}]}