cvelistv5 - CVE-2011-0352

CVE-2011-0352 (GCVE-0-2011-0352)

Vulnerability from cvelistv5 – Published: 2011-01-24 17:00 – Updated: 2024-08-06 21:51

Summary

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

	http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-0…	third-party-advisoryx_refsource_JVNDB
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://tools.cisco.com/security/center/viewAlert.…	x_refsource_CONFIRM
	http://www.vupen.com/english/advisories/2011/0205	vdb-entryx_refsource_VUPEN
	http://jvn.jp/en/jp/JVN26605630/index.html	third-party-advisoryx_refsource_JVN
	http://secunia.com/advisories/43017	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:51:08.249Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "JVNDB-2011-000007",
            "tags": [
              "third-party-advisory",
              "x_refsource_JVNDB",
              "x_transferred"
            ],
            "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
          },
          {
            "name": "wrt54gc-interface-bo(64850)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
          },
          {
            "name": "ADV-2011-0205",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0205"
          },
          {
            "name": "JVN#26605630",
            "tags": [
              "third-party-advisory",
              "x_refsource_JVN",
              "x_transferred"
            ],
            "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
          },
          {
            "name": "43017",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43017"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-01-13T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-16T14:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "JVNDB-2011-000007",
          "tags": [
            "third-party-advisory",
            "x_refsource_JVNDB"
          ],
          "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
        },
        {
          "name": "wrt54gc-interface-bo(64850)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
        },
        {
          "name": "ADV-2011-0205",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0205"
        },
        {
          "name": "JVN#26605630",
          "tags": [
            "third-party-advisory",
            "x_refsource_JVN"
          ],
          "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
        },
        {
          "name": "43017",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43017"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2011-0352",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "JVNDB-2011-000007",
              "refsource": "JVNDB",
              "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
            },
            {
              "name": "wrt54gc-interface-bo(64850)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
            },
            {
              "name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228",
              "refsource": "CONFIRM",
              "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
            },
            {
              "name": "ADV-2011-0205",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2011/0205"
            },
            {
              "name": "JVN#26605630",
              "refsource": "JVN",
              "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
            },
            {
              "name": "43017",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/43017"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2011-0352",
    "datePublished": "2011-01-24T17:00:00",
    "dateReserved": "2011-01-07T00:00:00",
    "dateUpdated": "2024-08-06T21:51:08.249Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:linksys_wrt54gc_router:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0034B272-273A-4220-B443-4C8328074072\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"1.05.7\", \"matchCriteriaId\": \"BD6F6CE9-0ADC-4C37-AE43-6FF037205797\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9629C8DC-E0E9-464F-A331-94A5E4FDF08B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D44F2F5-8119-4F17-9E73-94BFB6412264\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en el interfaz web de control de Cisco Linksys WRT54GC, permite a atacantes remotos provocar una denegaci\\u00f3n de servicio (ca\\u00edda) ,mediante una cadena larga en una petici\\u00f3n POST.\"}]",
      "id": "CVE-2011-0352",
      "lastModified": "2024-11-21T01:23:48.923",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2011-01-24T18:00:04.190",
      "references": "[{\"url\": \"http://jvn.jp/en/jp/JVN26605630/index.html\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://secunia.com/advisories/43017\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://tools.cisco.com/security/center/viewAlert.x?alertId=22228\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2011/0205\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/64850\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://jvn.jp/en/jp/JVN26605630/index.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/43017\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://tools.cisco.com/security/center/viewAlert.x?alertId=22228\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2011/0205\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/64850\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-119\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-0352\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2011-01-24T18:00:04.190\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en el interfaz web de control de Cisco Linksys WRT54GC, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) ,mediante una cadena larga en una petici\u00f3n POST.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-119\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:linksys_wrt54gc_router:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0034B272-273A-4220-B443-4C8328074072\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.05.7\",\"matchCriteriaId\":\"BD6F6CE9-0ADC-4C37-AE43-6FF037205797\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9629C8DC-E0E9-464F-A331-94A5E4FDF08B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D44F2F5-8119-4F17-9E73-94BFB6412264\"}]}]}],\"references\":[{\"url\":\"http://jvn.jp/en/jp/JVN26605630/index.html\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://secunia.com/advisories/43017\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://tools.cisco.com/security/center/viewAlert.x?alertId=22228\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0205\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/64850\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://jvn.jp/en/jp/JVN26605630/index.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43017\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://tools.cisco.com/security/center/viewAlert.x?alertId=22228\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0205\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/64850\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

FKIE_CVE-2011-0352

Vulnerability from fkie_nvd - Published: 2011-01-24 18:00 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
psirt@cisco.com	http://jvn.jp/en/jp/JVN26605630/index.html
psirt@cisco.com	http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html
psirt@cisco.com	http://secunia.com/advisories/43017	Vendor Advisory
psirt@cisco.com	http://tools.cisco.com/security/center/viewAlert.x?alertId=22228	Patch, Vendor Advisory
psirt@cisco.com	http://www.vupen.com/english/advisories/2011/0205
psirt@cisco.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/64850
af854a3a-2127-422b-91ae-364da2661108	http://jvn.jp/en/jp/JVN26605630/index.html
af854a3a-2127-422b-91ae-364da2661108	http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/43017	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/viewAlert.x?alertId=22228	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2011/0205
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/64850

Impacted products

Vendor	Product	Version
cisco	linksys_wrt54gc_router	*
cisco	linksys_wrt54gc_router_firmware	*
cisco	linksys_wrt54gc_router_firmware	1.02.5
cisco	linksys_wrt54gc_router_firmware	1.02.8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:linksys_wrt54gc_router:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0034B272-273A-4220-B443-4C8328074072",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD6F6CE9-0ADC-4C37-AE43-6FF037205797",
              "versionEndIncluding": "1.05.7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9629C8DC-E0E9-464F-A331-94A5E4FDF08B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D44F2F5-8119-4F17-9E73-94BFB6412264",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en el interfaz web de control de Cisco Linksys WRT54GC, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) ,mediante una cadena larga en una petici\u00f3n POST."
    }
  ],
  "id": "CVE-2011-0352",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-01-24T18:00:04.190",
  "references": [
    {
      "source": "psirt@cisco.com",
      "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/43017"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.vupen.com/english/advisories/2011/0205"
    },
    {
      "source": "psirt@cisco.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/43017"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2011/0205"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

JVNDB-2011-000007

Vulnerability from jvndb - Published: 2011-01-21 18:22 - Updated:2011-01-21 18:22

Severity ?

() - -

Summary

Cisco Linksys WRT54GC vulnerable to buffer overflow

Details

Cisco Linksys WRT54GC provided by Cisco Systems contains a buffer overflow vulnerability. Cisco Linksys WRT54GC provided by Cisco Systems is a network router. Cisco Linksys WRT54GC contains a buffer overflow vulnerability. Yuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the vendor under Information Security Early Warning Partnership.

References

Type

URL

	JVN	http://jvn.jp/en/jp/JVN26605630/index.html
	CVE	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0352
	NVD	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0352
	IPA SECURITY ALERTS	http://www.ipa.go.jp/security/english/vuln/201101_Cisco_en.html
	SECUNIA	http://secunia.com/advisories/43017
	Buffer Errors(CWE-119)	https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html

Impacted products

Vendor

Product

Cisco Systems, Inc.

Cisco Linksys WRT54GC

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html",
  "dc:date": "2011-01-21T18:22+09:00",
  "dcterms:issued": "2011-01-21T18:22+09:00",
  "dcterms:modified": "2011-01-21T18:22+09:00",
  "description": "Cisco Linksys WRT54GC provided by Cisco Systems contains a buffer overflow vulnerability.\r\n\r\nCisco Linksys WRT54GC provided by Cisco Systems is a network router. Cisco Linksys WRT54GC contains a buffer overflow vulnerability.\r\n\r\nYuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the vendor under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html",
  "sec:cpe": {
    "#text": "cpe:/h:cisco:wrt54gc",
    "@product": "Cisco Linksys WRT54GC",
    "@vendor": "Cisco Systems, Inc.",
    "@version": "2.2"
  },
  "sec:cvss": {
    "@score": "7.8",
    "@severity": "High",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2011-000007",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN26605630/index.html",
      "@id": "JVN#26605630",
      "@source": "JVN"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0352",
      "@id": "CVE-2011-0352",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0352",
      "@id": "CVE-2011-0352",
      "@source": "NVD"
    },
    {
      "#text": "http://www.ipa.go.jp/security/english/vuln/201101_Cisco_en.html",
      "@id": "Security Alert for Vulnerability in Cisco Linksys WRT54GC",
      "@source": "IPA SECURITY ALERTS"
    },
    {
      "#text": "http://secunia.com/advisories/43017",
      "@id": "SA43017",
      "@source": "SECUNIA"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-119",
      "@title": "Buffer Errors(CWE-119)"
    }
  ],
  "title": "Cisco Linksys WRT54GC vulnerable to buffer overflow"
}

GHSA-W5MC-RJM5-5W3Q

Vulnerability from github – Published: 2022-05-17 02:02 – Updated: 2022-05-17 02:02

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-0352"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-119"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-01-24T18:00:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request.",
  "id": "GHSA-w5mc-rjm5-5w3q",
  "modified": "2022-05-17T02:02:43Z",
  "published": "2022-05-17T02:02:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0352"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
    },
    {
      "type": "WEB",
      "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
    },
    {
      "type": "WEB",
      "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/43017"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2011/0205"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2011-AVI-030

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans le micrologiciel du Cisco Linksys WRT54GC permet de provoquer un déni de service à distance.

Description

Une erreur dans le traitement des requêtes HTTP POST par le micrologiciel du Cisco Linksys WRT54GC permet à une personne malintentionnée de provoquer un déni de service à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Micrologiciels du Cisco Linksys WRT54GC en version antérieure à 1.06.1.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco 22228 du 14 janvier 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMicrologiciels du Cisco Linksys WRT54GC  en version ant\u00e9rieure \u00e0 1.06.1.\u003c/p\u003e",
  "content": "## Description\n\nUne erreur dans le traitement des requ\u00eates HTTP POST par le\nmicrologiciel du Cisco Linksys WRT54GC permet \u00e0 une personne\nmalintentionn\u00e9e de provoquer un d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0352"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-030",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-01-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le micrologiciel du Cisco Linksys WRT54GC permet\nde provoquer un d\u00e9ni de service \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Cisco Linksys WRT54GC",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco 22228 du 14 janvier 2011",
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
    }
  ]
}

CERTA-2011-AVI-030

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans le micrologiciel du Cisco Linksys WRT54GC permet de provoquer un déni de service à distance.

Description

Une erreur dans le traitement des requêtes HTTP POST par le micrologiciel du Cisco Linksys WRT54GC permet à une personne malintentionnée de provoquer un déni de service à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Micrologiciels du Cisco Linksys WRT54GC en version antérieure à 1.06.1.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco 22228 du 14 janvier 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eMicrologiciels du Cisco Linksys WRT54GC  en version ant\u00e9rieure \u00e0 1.06.1.\u003c/p\u003e",
  "content": "## Description\n\nUne erreur dans le traitement des requ\u00eates HTTP POST par le\nmicrologiciel du Cisco Linksys WRT54GC permet \u00e0 une personne\nmalintentionn\u00e9e de provoquer un d\u00e9ni de service \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0352"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-030",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-01-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le micrologiciel du Cisco Linksys WRT54GC permet\nde provoquer un d\u00e9ni de service \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Cisco Linksys WRT54GC",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco 22228 du 14 janvier 2011",
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
    }
  ]
}

VAR-201101-0214

Vulnerability from variot - Updated: 2023-12-18 12:39

Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request. Cisco Linksys WRT54GC provided by Cisco Systems contains a buffer overflow vulnerability. Cisco Linksys WRT54GC provided by Cisco Systems is a network router. Cisco Linksys WRT54GC contains a buffer overflow vulnerability. Yuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the vendor under Information Security Early Warning Partnership.When processing a specially crafted HTTP request, the router may crash resulting in a denial-of-service (DoS). The Linksys WRT54GC is prone to a remote buffer-overflow vulnerability because it fails to bounds-check user-supplied input before copying it into an insufficiently sized memory buffer. Failed exploit attempts will result in a denial-of-service condition. Linksys WRT54GC firmware versions prior to 1.06.1 are vulnerable. ----------------------------------------------------------------------

Secure your corporate defenses and reduce complexity in handling vulnerability threats with the new Secunia Vulnerability Intelligence Manager (VIM).

Request a free trial: http://secunia.com/products/corporate/vim/

TITLE: Linksys WRT54GC Web Management Interface Buffer Overflow Vulnerability

SECUNIA ADVISORY ID: SA43017

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/43017/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=43017

RELEASE DATE: 2011-01-21

DISCUSS ADVISORY: http://secunia.com/advisories/43017/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)

http://secunia.com/advisories/43017/

ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=43017

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION: A vulnerability has been reported in Linksys WRT54GC, which can be exploited by malicious people to compromise a vulnerable system.

SOLUTION: Update to firmware version 1.06.1.

Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

PROVIDED AND/OR DISCOVERED BY: The vendor credits Yuji Ukai, Fourteenforty Research Institute.

ORIGINAL ADVISORY: http://tools.cisco.com/security/center/viewAlert.x?alertId=22228

OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201101-0214",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "linksys wrt54gc router",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.05.7"
      },
      {
        "model": "linksys wrt54gc router",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "linksys wrt54gc router",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.02.5"
      },
      {
        "model": "linksys wrt54gc router",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.02.8"
      },
      {
        "model": "linksys wrt54gc",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "firmware prior to 1.6.01"
      },
      {
        "model": "wrt54gc",
        "scope": null,
        "trust": 0.6,
        "vendor": "linksys",
        "version": null
      },
      {
        "model": "linksys wrt54gc router",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "linksys wrt54gc",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "1.6"
      },
      {
        "model": "linksys wrt54gc",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "1.6.1"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "BID",
        "id": "45943"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:linksys_wrt54gc_router:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.8:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "1.05.7",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Yuji Ukai",
    "sources": [
      {
        "db": "BID",
        "id": "45943"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2011-0352",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "IPA",
            "availabilityImpact": "Complete",
            "baseScore": 7.8,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "JVNDB-2011-000007",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-48297",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2011-0352",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "IPA",
            "id": "JVNDB-2011-000007",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201101-340",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-48297",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request. Cisco Linksys WRT54GC provided by Cisco Systems contains a buffer overflow vulnerability. Cisco Linksys WRT54GC provided by Cisco Systems is a network router. Cisco Linksys WRT54GC contains a buffer overflow vulnerability. Yuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the vendor under Information Security Early Warning Partnership.When processing a specially crafted HTTP request, the router may crash resulting in a denial-of-service (DoS). The Linksys WRT54GC is prone to a remote buffer-overflow vulnerability because it fails to bounds-check user-supplied input before copying it into an insufficiently sized memory buffer. Failed exploit attempts will result in a denial-of-service condition. \nLinksys WRT54GC firmware versions prior to 1.06.1 are vulnerable. ----------------------------------------------------------------------\n\n\nSecure your corporate defenses and reduce complexity in handling vulnerability threats with the new Secunia Vulnerability Intelligence Manager (VIM). \n\nRequest a free trial: \nhttp://secunia.com/products/corporate/vim/\n\n\n----------------------------------------------------------------------\n\nTITLE:\nLinksys WRT54GC Web Management Interface Buffer Overflow\nVulnerability\n\nSECUNIA ADVISORY ID:\nSA43017\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/43017/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=43017\n\nRELEASE DATE:\n2011-01-21\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/43017/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/43017/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=43017\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nA vulnerability has been reported in Linksys WRT54GC, which can be\nexploited by malicious people to compromise a vulnerable system. \n\nSOLUTION:\nUpdate to firmware version 1.06.1. \n\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nPROVIDED AND/OR DISCOVERED BY:\nThe vendor credits Yuji Ukai, Fourteenforty Research Institute. \n\nORIGINAL ADVISORY:\nhttp://tools.cisco.com/security/center/viewAlert.x?alertId=22228\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "BID",
        "id": "45943"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "PACKETSTORM",
        "id": "97749"
      }
    ],
    "trust": 2.61
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2011-0352",
        "trust": 3.4
      },
      {
        "db": "SECUNIA",
        "id": "43017",
        "trust": 2.6
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007",
        "trust": 1.9
      },
      {
        "db": "JVN",
        "id": "JVN26605630",
        "trust": 1.9
      },
      {
        "db": "VUPEN",
        "id": "ADV-2011-0205",
        "trust": 1.1
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "45943",
        "trust": 0.4
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "97749",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "BID",
        "id": "45943"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "PACKETSTORM",
        "id": "97749"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "id": "VAR-201101-0214",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      }
    ],
    "trust": 1.30416665
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:39:00.174000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "22228",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=22228"
      },
      {
        "title": "Linksys WRT54GC Web Management Interface Buffer Overflow Vulnerability Patch",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/2717"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-119",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.9,
        "url": "http://jvn.jp/en/jp/jvn26605630/index.html"
      },
      {
        "trust": 1.9,
        "url": "http://secunia.com/advisories/43017"
      },
      {
        "trust": 1.5,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=22228"
      },
      {
        "trust": 1.1,
        "url": "http://jvndb.jvn.jp/en/contents/2011/jvndb-2011-000007.html"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2011/0205"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-0352"
      },
      {
        "trust": 0.8,
        "url": "http://www.ipa.go.jp/security/english/vuln/201101_cisco_en.html"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-0352"
      },
      {
        "trust": 0.6,
        "url": "http://secunia.com/advisories/43017/http"
      },
      {
        "trust": 0.3,
        "url": "http://www.linksys.com/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/43017/#comments"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/products/corporate/evm/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/products/corporate/vim/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/personal/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/43017/"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=43017"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "BID",
        "id": "45943"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "PACKETSTORM",
        "id": "97749"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "db": "BID",
        "id": "45943"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "db": "PACKETSTORM",
        "id": "97749"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-01-25T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "date": "2011-01-24T00:00:00",
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "date": "2011-01-13T00:00:00",
        "db": "BID",
        "id": "45943"
      },
      {
        "date": "2011-01-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "date": "2011-01-21T07:26:00",
        "db": "PACKETSTORM",
        "id": "97749"
      },
      {
        "date": "2011-01-24T18:00:04.190000",
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "date": "2011-01-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-01-25T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2011-0315"
      },
      {
        "date": "2017-08-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-48297"
      },
      {
        "date": "2011-01-13T00:00:00",
        "db": "BID",
        "id": "45943"
      },
      {
        "date": "2011-01-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      },
      {
        "date": "2017-08-17T01:33:27.447000",
        "db": "NVD",
        "id": "CVE-2011-0352"
      },
      {
        "date": "2011-01-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Linksys WRT54GC vulnerable to buffer overflow",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-000007"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201101-340"
      }
    ],
    "trust": 0.6
  }
}

GSD-2011-0352

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2011-0352

Aliases

CVE-2011-0352

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-0352",
    "description": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request.",
    "id": "GSD-2011-0352"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-0352"
      ],
      "details": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request.",
      "id": "GSD-2011-0352",
      "modified": "2023-12-13T01:19:04.516947Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2011-0352",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "JVNDB-2011-000007",
            "refsource": "JVNDB",
            "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
          },
          {
            "name": "wrt54gc-interface-bo(64850)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
          },
          {
            "name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228",
            "refsource": "CONFIRM",
            "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
          },
          {
            "name": "ADV-2011-0205",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2011/0205"
          },
          {
            "name": "JVN#26605630",
            "refsource": "JVN",
            "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
          },
          {
            "name": "43017",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/43017"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:linksys_wrt54gc_router:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.8:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "1.05.7",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:linksys_wrt54gc_router_firmware:1.02.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2011-0352"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in the web-based management interface on the Cisco Linksys WRT54GC router with firmware before 1.06.1 allows remote attackers to cause a denial of service (device crash) via a long string in a POST request."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-119"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "JVN#26605630",
              "refsource": "JVN",
              "tags": [],
              "url": "http://jvn.jp/en/jp/JVN26605630/index.html"
            },
            {
              "name": "43017",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/43017"
            },
            {
              "name": "JVNDB-2011-000007",
              "refsource": "JVNDB",
              "tags": [],
              "url": "http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000007.html"
            },
            {
              "name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=22228"
            },
            {
              "name": "ADV-2011-0205",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2011/0205"
            },
            {
              "name": "wrt54gc-interface-bo(64850)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64850"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-08-17T01:33Z",
      "publishedDate": "2011-01-24T18:00Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-0352 (GCVE-0-2011-0352)

FKIE_CVE-2011-0352

JVNDB-2011-000007

GHSA-W5MC-RJM5-5W3Q

CERTA-2011-AVI-030

Description

Solution

CERTA-2011-AVI-030

Description

Solution

VAR-201101-0214

GSD-2011-0352

Tags

Sightings

Nomenclature