H3C ER5100 enterprise-grade Dual-Core Broadband Router web Management page exists validation vulnerability-vulnerability warning-the black bar safety net

2011-06-21T00:00:00
ID MYHACK58:62201130973
Type myhack58
Reporter 佚名
Modified 2011-06-21T00:00:00

Description

Brief description:

H3C ER5100 enterprise-level Broadband Router web Management page exists validation vulnerability, unauthorized visitors may modify, restart, and view most of the system configuration.

Vulnerability proof:

!

http://222.223.5.218:8080/home.asp?userLogin.asp http://222.223.5.218:8080/wan_NAT.asp?userLogin.asp


Vulnerability response

Vendor response:

Failure to contact the vendors or manufacturers actively refused it