Lucene search

[email protected]CVE-2011-0887

HistoryFeb 08, 2011 - 10:00 p.m.

CVE-2011-0887

2011-02-0822:00:00

CWE-310

[email protected]

web.nvd.nist.gov

cve-2011-0887

smc

smcd3g-ccr

comcast business gateway

session hijacking

predictable session ids

firmware vulnerability

6.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.019 Low

EPSS

Percentile

88.3%

JSON

The web management portal on the SMC SMCD3G-CCR (aka Comcast Business Gateway) with firmware before 1.4.0.49.2 uses predictable session IDs based on time values, which makes it easier for remote attackers to hijack sessions via a brute-force attack on the userid cookie.

CPENameOperatorVersion
smc_networks:smcd3g-ccrsmc networks smcd3g-ccreq*
smc_networks:smcd3g-ccr_firmwaresmc networks smcd3g-ccr firmwareeq1.4.0.42

CPE	Name	Operator	Version
smc_networks:smcd3g-ccr	smc networks smcd3g-ccr	eq	*
smc_networks:smcd3g-ccr_firmware	smc networks smcd3g-ccr firmware	eq	1.4.0.42

References

seclists.org/bugtraq/2011/Feb/36

secunia.com/advisories/43199

securityreason.com/securityalert/8068

www.exploit-db.com/exploits/16123/

www.securityfocus.com/archive/1/516205/100/0/threaded

www.securityfocus.com/bid/46215

exchange.xforce.ibmcloud.com/vulnerabilities/65186

www.trustwave.com/spiderlabs/advisories/TWSL2011-002.txt

6.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.019 Low

EPSS

Percentile

88.3%

JSON

Related for CVE-2011-0887

prion1 cvelist1 packetstorm1 exploitpack1 seebug1 securityvulns1 exploitdb1