PRIOn knowledge basePRION:CVE-2008-1262

HistoryMar 10, 2008 - 5:44 p.m.

Authentication flaw

2008-03-1017:44:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.129 Low

EPSS

Percentile

95.5%

JSON

The administration panel on the Airspan WiMax ProST 4.1 antenna with 6.5.38.0 software does not verify authentication credentials, which allows remote attackers to (1) upload malformed firmware or (2) bind the antenna to a different WiMAX base station via unspecified requests to forms under process_adv/.

CPENameOperatorVersion
wimax_prosteq4.1 6.5.38.0

CPE	Name	Operator	Version
	wimax_prost	eq	4.1 6.5.38.0

References

airspan4wimax.googlepages.com/

secunia.com/advisories/29265

www.0x000000.com/?i=524

www.gnucitizen.org/projects/router-hacking-challenge/

www.kb.cert.org/vuls/id/248372

www.securityfocus.com/archive/1/489009/100/0/threaded

www.securityfocus.com/bid/28122

www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820

www.vupen.com/english/advisories/2008/0802/references

exchange.xforce.ibmcloud.com/vulnerabilities/41052