Vulnerability Description
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linksys | Wag54Gs | <= firmware_1.01.03 |
Related Weaknesses (CWE)
References
- http://osvdb.org/43536
- http://www.gnucitizen.org/blog/persistent-xss-and-csrf-on-wireless-g-adsl-gatewaExploit
- http://www.gnucitizen.org/projects/router-hacking-challenge/Exploit
- http://www.securityfocus.com/archive/1/489009/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41268
- http://osvdb.org/43536
- http://www.gnucitizen.org/blog/persistent-xss-and-csrf-on-wireless-g-adsl-gatewaExploit
- http://www.gnucitizen.org/projects/router-hacking-challenge/Exploit
- http://www.securityfocus.com/archive/1/489009/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41268
FAQ
What is CVE-2007-6709?
CVE-2007-6709 is a vulnerability with a CVSS score of 7.5 (HIGH). The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain ac...
How severe is CVE-2007-6709?
CVE-2007-6709 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6709?
Check the references section above for vendor advisories and patch information. Affected products include: Linksys Wag54Gs.