漏洞标题
N/A
漏洞描述信息
在Cisco Linksys WRT54G上, Broadcom UPnP 栈中的UPnP IGD实现,其固件版本在4.30.5之前,WRT54GS v1-v3的固件版本在4.71.1之前,以及WRT54GS v4的固件版本在1.06.1之前,允许远程攻击者通过发送一个基于“外部转发”漏洞的 SOAP 请求,向WAN接口发送UPnP AddPortMapping action,以建立任意端口映射。
CVSS信息
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Cisco Linksys WRT54G ‘Broadcom UPnP’配置错误漏洞
漏洞描述信息
Cisco Linksys WRT54G多个版本的Broadcom UPnP栈的UPnP IGD安装启用中存在漏洞。远程攻击者可通过发送SOAP请求的UPnP AddPortMapping操作到WAN接口建立任意端口映射,该漏洞与 "external forwarding" 漏洞有关。 这些版本包括:Cisco Linksys WRT54G with firmware 4.30.5之前版本, WRT54GS v1至v3 with firmware 4.71.1之前版本以及WRT54GS v4 with f
CVSS信息
N/A
漏洞类别
配置错误