26 matches found
EUVD-2008-6567
Malware in sbrugna...
EUVD-2007-4371
Malware in sbrugna...
2Wire Routers - Cross-Site Request Forgery Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password NUEVOPASS:...
2Wire Routers 'H04_POST' - Access Validation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27516/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage this issue to...
2Wire Routers 'CD35_SETUP_01' - Access Validation Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36031/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage this issue to...
Singtel 2wire routers CSRF
Unchangable account, CSRF...
2wire routers DoS
It's possible to reboot device via TCP/50001 https Web interface without authorization...
2WIRE Routers - 'CD35_SETUP_01' Access Validation
source: https://www.securityfocus.com/bid/36031/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage this issue to change the router's administrative...
2WIRE Routers - CD35_SETUP_01 Access Validation
2WIRE Routers - CD35SETUP01 Access Validation source: https://www.securityfocus.com/bid/36031/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage th...
2Wire routers unauthorized access
It's possible to reset password without knowledge of old one...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the xslt script in the web-based management interface on the 2wire 1701HG, 1800HW, 2071HG, and 2700HG with firmware 3.17.5, 3.7.1, 4.25.19, or 5.29.51 allows remote attackers to hijack the intranet connectivity of arbitrary users for requests that...
2WIRE Routers - H04_POST Access Validation
2WIRE Routers - H04POST Access Validation source: https://www.securityfocus.com/bid/27516/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage this...
2WIRE Routers - 'H04_POST' Access Validation
source: https://www.securityfocus.com/bid/27516/info Multiple 2Wire routers are prone to an access-validation vulnerability because they fail to adequately authenticate users before performing certain actions. Unauthenticated attackers can leverage this issue to change the password of arbitrary...
2WIRE Routers - Cross-Site Request Forgery
2WIRE Routers - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password...
2WIRE Routers - Cross-Site Request Forgery
source: https://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password NUEVOPASS:...
Default credentials
2wire 1701HG and 2071 Gateway routers, with 5.29.51 and possibly 3.17.5 software, have a blank password by default...
CVE-2007-4387
Cross-site request forgery CSRF vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators...
CVE-2007-4389
Cross-site request forgery CSRF vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, and 5.29.51 software, allows remote attackers to create DNS mappings as administrators, and conduct DNS poisoning attacks, via the NAME and ADDR parameters...
CVE-2007-4387
Cross-site request forgery CSRF vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators...