Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2011-4499 | First vendor Publication | 2011-11-22 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 7.5 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS v1 through v3 with firmware before 4.71.1, and WRT54GS v4 with firmware before 1.06.1 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4499 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-16 | Configuration |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 3 | |
| Application | 3 | |
| Hardware | 2 | |
| Hardware | 4 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 77329 | Cisco Linksys Multiple Router Broadcomp UPnP IGD AddPortMapping Action Remote... Multiple Cisco Linksys routers contain a flaw related to the WAN interface's parsing of SOAP requests. The issue is triggered when a remote attacker uses a UPnP AddPortMapping action. This may allow a remote attacker to establish arbitrary port mappings. |
Sources (Detail)
| Source | Url |
|---|
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:03:31 |
|
| 2024-11-28 12:27:50 |
|
| 2020-05-23 01:47:33 |
|
| 2020-05-23 00:32:14 |
|
| 2013-05-10 23:10:55 |
|
