Vulnerability Description
The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Linksys Wrt54G Router Firmware | <= 4.20.8 |
| Linksys | Wrt54G | All versions |
| Cisco | Linksys Wrt54Gs Router Firmware | <= 4.70.6 |
| Linksys | Wrt54Gs | 1.0 |
Related Weaknesses (CWE)
References
- http://www.kb.cert.org/vuls/id/357851US Government Resource
- http://www.upnp-hacks.org/devices.html
- http://www.kb.cert.org/vuls/id/357851US Government Resource
- http://www.upnp-hacks.org/devices.html
FAQ
What is CVE-2011-4499?
CVE-2011-4499 is a vulnerability with a CVSS score of 7.5 (HIGH). The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1...
How severe is CVE-2011-4499?
CVE-2011-4499 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4499?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Linksys Wrt54G Router Firmware, Linksys Wrt54G, Cisco Linksys Wrt54Gs Router Firmware, Linksys Wrt54Gs.