CVE-2006-4523
published 2006-09-01CVE-2006-4523: The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote attackers to cause a denial of service…
PriorityP423medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.70%
88.4th percentile
The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote attackers to cause a denial of service (crash) via a CRLF sequence in a GET request.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| 2wire | 1700hg | <= 5.29.51 | — |
| 2wire | 1701hg | <= 5.29.51 | — |
| 2wire | 1800hw | <= 5.29.51 | — |
| 2wire | 2071 | <= 5.29.51 | — |
| 2wire | 2700hg | <= 5.29.51 | — |
| 2wire | 2701hg-t | <= 5.29.51 | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
| 2wire_inc | homeportal | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jpcj-vqr6-24hg: The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5
ghsa_unreviewed·2022-05-02·CVSS 5.0
CVE-2009-3962 [MEDIUM] CWE-20 GHSA-jpcj-vqr6-24hg: The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5
The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.
GHSA
GHSA-c4cm-7xmj-gphj: The web-based management interface in 2Wire, Inc
ghsa_unreviewed·2022-05-01
CVE-2006-4523 [MEDIUM] GHSA-c4cm-7xmj-gphj: The web-based management interface in 2Wire, Inc
The web-based management interface in 2Wire, Inc. HomePortal and OfficePortal Series modems and routers allows remote attackers to cause a denial of service (crash) via a CRLF sequence in a GET request.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/21583http://securityreason.com/securityalert/1489http://www.mexhackteam.org/prethoonker/DoS_ADV_2Wire.txthttp://www.securityfocus.com/archive/1/443906/100/100/threadedhttp://www.securityfocus.com/bid/19634https://exchange.xforce.ibmcloud.com/vulnerabilities/28578https://www.exploit-db.com/exploits/2246http://secunia.com/advisories/21583http://securityreason.com/securityalert/1489http://www.mexhackteam.org/prethoonker/DoS_ADV_2Wire.txthttp://www.securityfocus.com/archive/1/443906/100/100/threadedhttp://www.securityfocus.com/bid/19634https://exchange.xforce.ibmcloud.com/vulnerabilities/28578https://www.exploit-db.com/exploits/2246
2006-09-01
Published