Vulnerability Description
SMC routers SMC7004VWBR running firmware 1.00.014 and SMC7008ABR EU running firmware 1.42.003 allow remote attackers to bypass authentication by connecting to it from the same IP address as the administrator who is logged in, then accessing the setup_status.htm or status.HTM pages.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Smc Networks | Smc7004Vwbr | 1.21a |
| Smc Networks | Smc7008Abr | 1.32 |
References
- http://marc.info/?l=bugtraq&m=109526094614160&w=2
- http://secunia.com/advisories/12601ExploitPatchVendor Advisory
- http://www.osvdb.org/10088
- http://www.securityfocus.com/bid/11197Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17443
- http://marc.info/?l=bugtraq&m=109526094614160&w=2
- http://secunia.com/advisories/12601ExploitPatchVendor Advisory
- http://www.osvdb.org/10088
- http://www.securityfocus.com/bid/11197Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17443
FAQ
What is CVE-2004-1685?
CVE-2004-1685 is a vulnerability with a CVSS score of 7.5 (HIGH). SMC routers SMC7004VWBR running firmware 1.00.014 and SMC7008ABR EU running firmware 1.42.003 allow remote attackers to bypass authentication by connecting to it from the same IP address as the admini...
How severe is CVE-2004-1685?
CVE-2004-1685 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1685?
Check the references section above for vendor advisories and patch information. Affected products include: Smc Networks Smc7004Vwbr, Smc Networks Smc7008Abr.