Summary
Multiple Linksys products are prone to an information disclosure vulnerability.
Impact
Exploiting this issue could allow an attacker read the config of the device including usernames and passwords.
Solution
Ask the Vendor for an update.
Detection
Send a HTTP GET request and check the response.
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities
- Adiscon LogAnalyzer Multiple SQL Injection and XSS Vulnerabilities
- Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability
- AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities
- Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities