Lucene search

[email protected]CVE-2008-1269

HistoryMar 10, 2008 - 5:44 p.m.

CVE-2008-1269

2008-03-1017:44:00

CWE-287

[email protected]

web.nvd.nist.gov

cve-2008-1269

wi-fi router

authentication bypass

encryption disablement

nvd

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.8%

JSON

cp06_wifi_m_nocifr.cgi in the admin panel on the Alice Gate 2 Plus Wi-Fi router does not verify authentication credentials, which allows remote attackers to disable Wi-Fi encryption via a certain request.

Affected configurations

NVD

Node

alicegate2_plus_wi-fi

CPENameOperatorVersion
alice:gate2_plus_wi-fialice gate2 plus wi-fieq*

CPE	Name	Operator	Version
alice:gate2_plus_wi-fi	alice gate2 plus wi-fi	eq	*

References

vx.netlux.org/wargamevx/alice_gate2_pluswifi_PoC.zip

www.gnucitizen.org/projects/router-hacking-challenge/

www.securityfocus.com/archive/1/489009/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/41110

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.8%

JSON

Related for CVE-2008-1269

prion1 cvelist1 nvd1