CVE-2006-5202

Linksys WRT54g firmware 1.00.9 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-5202. PoCs published by meathive.

AI-analyzed exploit summary This exploit demonstrates an authentication bypass vulnerability in Linksys WRT54G routers, allowing remote attackers to modify router settings via direct POST requests to specific scripts without credentials. The PoC includes HTML forms and JavaScript to automate the submission of malicious configuration changes.

Description

Linksys WRT54g firmware 1.00.9 does not require credentials when making configuration changes, which allows remote attackers to modify arbitrary configurations via a direct request to Security.tri, as demonstrated using the SecurityMode and layout parameters, a different issue than CVE-2006-2559.

Exploits (1)

exploitdb WORKING POC VERIFIED
by meathive · textremotehardware
https://www.exploit-db.com/exploits/5926

This exploit demonstrates an authentication bypass vulnerability in Linksys WRT54G routers, allowing remote attackers to modify router settings via direct POST requests to specific scripts without credentials. The PoC includes HTML forms and JavaScript to automate the submission of malicious configuration changes.

Classification
Working Poc 95%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: Linksys WRT54G firmware 1.00.9
No auth needed
Prerequisites: Default router IP (192.168.1.1) · Access to the router's web interface
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/19347
Various Sources x_refsource_misc
https://kinqpinz.info/lib/wrt54g/
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/5926
Various Sources x_refsource_misc
https://kinqpinz.info/lib/wrt54g/own2.txt
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/930364
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/21372
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1016638

Scores

EPSS 0.0409
EPSS Percentile 89.5%

Details

Status published
Products (1)
linksys/wrt54g 1.00.9
Published Oct 10, 2006
Tracked Since Feb 18, 2026