10 matches found
Actiontec GT784WN Modem Privilege Gain Vulnerability
The Actiontec GT784WN is a DSL Digital Subscriber Line modem router from Actiontec USA. A security vulnerability exists in Actiontec GT784WN modems using firmware versions prior to NCS01-1.0.13, which stems from the program's use of hard-coded certificates. A remote attacker could exploit the...
Actiontec GT784WN Modem Cross-Site Request Forgery Vulnerability
The Actiontec GT784WN is a DSL Digital Subscriber Line modem router from Actiontec USA. A cross-site request forgery vulnerability exists in Actiontec GT784WN modems using firmware versions prior to NCS01-1.0.13. A remote attacker could exploit the vulnerability to hijack authentication or hijack...
CVE-2015-2905
Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...
Hardcoded credentials
Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...
CVE-2015-2904
Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...
CVE-2015-2904
Actiontec GT784WN modems with firmware before NCS01-1.0.13 have hardcoded credentials, which makes it easier for remote attackers to obtain root access by connecting to the web administration interface...
CVE-2015-2905
Cross-site request forgery CSRF vulnerability on Actiontec GT784WN modems with firmware before NCS01-1.0.13 allows remote attackers to hijack the authentication or intranet connectivity of arbitrary users...
CVE-2015-2904
CVE-2015-2904 affects Actiontec GT784WN modems with firmware prior to NCS01-1.0.13, where hard-coded credentials allow remote attackers to obtain root access by connecting to the web management interface. Public documents confirm the vulnerability is tied to root-privilege credential exposure and...
CVE-2015-2905
The CVE-2015-2905 entry affects the Actiontec GT784WN Wireless N DSL Modem. The vulnerability is a Cross-Site Request Forgery (CSRF) in firmware versions prior to NCS01-1.0.13, which enables a remote attacker to hijack authentication or an intranet connection for arbitrary users. Affected device:...