Unrated severityNVD Advisory· Published May 24, 2006· Updated Jun 16, 2026
CVE-2006-2560
CVE-2006-2560
Description
Sitecom WL-153 router firmware before 1.38 allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:o:sitecom:wl-153_router_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sitecom:wl-153_router_firmware:*:*:*:*:*:*:*:*range: <=1.34
- cpe:2.3:o:sitecom:wl-153_router_firmware:1.31:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/20183nvdVendor Advisory
- www.securityview.org/dutch-student-finds-a-bug-in-upnp.htmlnvdURL Repurposed
- www.securityview.org/how-does-the-upnp-flaw-works.htmlnvdURL Repurposed
- www.vupen.com/english/advisories/2006/1912nvd
News mentions
0No linked articles in our index yet.