VYPR
Unrated severityNVD Advisory· Published May 20, 2005· Updated Jun 16, 2026

CVE-2005-1680

CVE-2005-1680

Description

D-Link DSL-502T, DSL-504T, DSL-562T, and DSL-G604T, when /cgi-bin/firmwarecfg is executed, allows remote attackers to bypass authentication (1) if their IP address already exists in /var/tmp/fw_ip or (2) if their request is the first, which causes /var/tmp/fw_ip to be created and contain their IP address.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Dlink/Dsl 502t2 versions
    cpe:2.3:h:d-link:dsl-502t:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:d-link:dsl-502t:*:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:h:d-link:dsl-504t:*:*:*:*:*:*:*:*
  • cpe:2.3:h:d-link:dsl-562t:*:*:*:*:*:*:*:*
  • cpe:2.3:h:d-link:dsl-g604t:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.