CVE-2005-2914
Linksys WRT54G - Unauthenticated Configuration Exposure via ezconfig.asp
Title source: llmDescription
ezconfig.asp in Linksys WRT54G router 3.01.03, 3.03.6, non-default configurations of 2.04.4, and possibly other versions, does not use an authentication initialization function, which allows remote attackers to obtain encrypted configuration information and, if the key is known, modify the configuration.
References (1)
Core 1
Core References
Various Sources third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities
Scores
EPSS
0.0076
EPSS Percentile
73.5%
Details
Status
published
Products (3)
linksys/wrt54g
2.04.4
linksys/wrt54g
3.01.3
linksys/wrt54g
3.03.6
Published
Sep 14, 2005
Tracked Since
Feb 18, 2026