Lucene search

[email protected]NVD:CVE-2013-7293

HistoryJan 15, 2014 - 4:13 p.m.

CVE-2013-7293

2014-01-1516:13:03

CWE-284

CWE-16

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

68.0%

JSON

The ASUS WL-330NUL router has a configuration process that relies on accessing the 192.168.1.1 IP address, but the documentation advises users to instead access a DNS hostname that does not always resolve to 192.168.1.1, which makes it easier for remote attackers to hijack the configuration traffic by controlling the server associated with that hostname.

Affected configurations

Nvd

Node

asuswl-330nulMatch-

VendorProductVersionCPE
asuswl-330nul-cpe:2.3:h:asus:wl-330nul:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
asus	wl-330nul	-	cpe:2.3:h:asus:wl-330nul:-:::::::*

References

www.kb.cert.org/vuls/id/191750

www.securityfocus.com/bid/64799

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

68.0%

JSON

Related for NVD:CVE-2013-7293

cve1 prion1 cvelist1