CVE-2004-2507
published 2004-12-31CVE-2004-2507: Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an…
PriorityP431medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
7.74%
93.9th percentile
Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an absolute pathname in the next_file parameter.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | wvc54gca | — | — |
| cisco | wvc54gca | — | — |
| linksys | wvc11b | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v59r-47rm-ww8g: img/main
ghsa_unreviewed·2022-05-02·CVSS 5.0
CVE-2009-1556 [MEDIUM] CWE-200 GHSA-v59r-47rm-ww8g: img/main
img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the next_file parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerability than CVE-2004-2507.
GHSA
GHSA-mhv2-672p-f8h4: Absolute path traversal vulnerability in main
ghsa_unreviewed·2022-04-29
CVE-2004-2507 [MEDIUM] GHSA-mhv2-672p-f8h4: Absolute path traversal vulnerability in main
Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an absolute pathname in the next_file parameter.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2004-06/0103.htmlhttp://secunia.com/advisories/11811/http://securitytracker.com/id?1010489http://www.osvdb.org/7112http://www.securityfocus.com/bid/10476https://exchange.xforce.ibmcloud.com/vulnerabilities/16339http://archives.neohapsis.com/archives/bugtraq/2004-06/0103.htmlhttp://secunia.com/advisories/11811/http://securitytracker.com/id?1010489http://www.osvdb.org/7112http://www.securityfocus.com/bid/10476https://exchange.xforce.ibmcloud.com/vulnerabilities/16339
2004-12-31
Published