CVE-2008-1263
Linksys WRT54G - Authenticated Sensitive Information Exposure via Config.bin
Title source: llmDescription
The Linksys WRT54G router stores passwords and keys in cleartext in the Config.bin file, which might allow remote authenticated users to obtain sensitive information via an HTTP request for the top-level Config.bin URI.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/489009/100/0/threaded
Exploit x_refsource_misc
http://www.gnucitizen.org/projects/router-hacking-challenge/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41115
Scores
EPSS
0.0022
EPSS Percentile
44.2%
Details
CWE
CWE-310
Status
published
Products (1)
linksys/wrt54g
Published
Mar 10, 2008
Tracked Since
Feb 18, 2026