Lucene search

[email protected]CVE-2009-2073

HistoryJun 15, 2009 - 7:30 p.m.

CVE-2009-2073

2009-06-1519:30:05

CWE-352

[email protected]

web.nvd.nist.gov

cve-2009-2073

csrf

linksys wrt160n

wireless router

vulnerability

nvd

security

hijack authentication

administrator privileges

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.8%

JSON

Cross-site request forgery (CSRF) vulnerability in Linksys WRT160N wireless router hardware 1 and firmware 1.02.2 allows remote attackers to hijack the authentication of other users for unspecified requests via unknown vectors, as demonstrated using administrator privileges and actions.

Affected configurations

NVD

Node

ciscowrt160nMatch1.02.2

CPENameOperatorVersion
cisco:wrt160ncisco wrt160neq1.02.2

CPE	Name	Operator	Version
cisco:wrt160n	cisco wrt160n	eq	1.02.2

References

holisticinfosec.org/content/view/109/45/

secunia.com/advisories/34625

www.osvdb.org/53414

www.securityfocus.com/bid/34448

www.vupen.com/english/advisories/2009/0982

exchange.xforce.ibmcloud.com/vulnerabilities/49775

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.8%

JSON

Related for CVE-2009-2073

cvelist1 prion1 nvd1