Lucene search

[email protected]CVE-2008-2002

HistoryApr 28, 2008 - 8:05 p.m.

CVE-2008-2002

2008-04-2820:05:00

CWE-352

[email protected]

web.nvd.nist.gov

csrf

vulnerability

motorola

surfboard

sb5100

denial of service

remote attackers

7.8 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:P/A:C

0.013 Low

EPSS

Percentile

86.1%

JSON

Multiple cross-site request forgery (CSRF) vulnerabilities on Motorola Surfboard with software SB5100-2.3.3.0-SCM00-NOSH allow remote attackers to (1) cause a denial of service (device reboot) via the “Restart Cable Modem” value in the BUTTON_INPUT parameter to configdata.html, and (2) cause a denial of service (hard reset) via the “Reset All Defaults” value in the BUTTON_INPUT parameter to configdata.html.

CPENameOperatorVersion
motorola:surfboardmotorola surfboardeqsb5100

CPE	Name	Operator	Version
motorola:surfboard	motorola surfboard	eq	sb5100

References

secunia.com/advisories/30026

securityreason.com/securityalert/3839

www.kb.cert.org/vuls/id/643049

www.rooksecurity.com/blog/?p=4

www.securityfocus.com/archive/1/491143/100/0/threaded

www.vupen.com/english/advisories/2008/1390/references

exchange.xforce.ibmcloud.com/vulnerabilities/42091

7.8 High

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:P/A:C

0.013 Low

EPSS

Percentile

86.1%

JSON

Related for CVE-2008-2002

prion1 cvelist1