Vulnerability Description
Hawking Technology wireless router WR254-CA uses a hardcoded IP address among the set of DNS server IP addresses, which could allow remote attackers to cause a denial of service or hijack the router by attacking or spoofing the server at the hardcoded address. NOTE: it could be argued that this issue reflects an inherent limitation of DNS itself, so perhaps it should not be included in CVE.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hawking Technology | Wr254-Ca Wireless Router | All versions |
References
- http://securityreason.com/securityalert/1860
- http://www.securityfocus.com/archive/1/450138/100/100/threaded
- http://securityreason.com/securityalert/1860
- http://www.securityfocus.com/archive/1/450138/100/100/threaded
FAQ
What is CVE-2006-5901?
CVE-2006-5901 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Hawking Technology wireless router WR254-CA uses a hardcoded IP address among the set of DNS server IP addresses, which could allow remote attackers to cause a denial of service or hijack the router b...
How severe is CVE-2006-5901?
CVE-2006-5901 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5901?
Check the references section above for vendor advisories and patch information. Affected products include: Hawking Technology Wr254-Ca Wireless Router.