15 matches found
EUVD-2007-6673
Malware in sbrugna...
EUVD-2007-3558
Malware in sbrugna...
Linksys WAG200G - Multiple Vulnerabilities
No description provided by source. Device Name: Linksys WAG200G Vendor: Linksys/Cisco ============ Device Description: ============ The WAG200G is a Linksys Wireless-G ADSL Home Gateway which has a high-speed ADSL2+ modem that gives you a fast connection to the Internet. Source:...
Linksys WAG200G - Multiple Vulnerabilities
Linksys WAG200G - Multiple Vulnerabilities Device Name: Linksys WAG200G Vendor: Linksys/Cisco ============ Device Description: ============ The WAG200G is a Linksys Wireless-G ADSL Home Gateway which has a high-speed ADSL2+ modem that gives you a fast connection to the Internet. Source:...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2007-6709
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
CVE-2007-6707
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
Default credentials
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
CVE-2007-6709
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
CVE-2007-6708
The CVE-2007-6708 entry describes CSRF vulnerabilities in the Cisco Linksys WAG54GS Wireless-G ADSL Gateway (firmware 1.01.03 and earlier). An attacker can forge requests to setup.cgi to perform admin actions without authentication, demonstrated by (1) Restore Factory Defaults via the mtenRestore...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.00.06 firmware allow remote attackers to inject arbitrary web script or HTML via the 1 c4trapip, 2 devname, 3 snmpgetcomm, or 4 snmpsetcomm parameter...
CVE-2007-3574
CVE-2007-3574 records multiple XSS vulnerabilities in Cisco Linksys WAG54GS Wireless-G ADSL Gateway, specifically in setup.cgi with firmware 1.00.06. An attacker can inject arbitrary web script or HTML via the parameters c4_trap_ip_, devname, snmp_getcomm, and snmp_setcomm, exploiting unsanitized...
CVE-2007-3574
Multiple cross-site scripting XSS vulnerabilities in setup.cgi on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.00.06 firmware allow remote attackers to inject arbitrary web script or HTML via the 1 c4trapip, 2 devname, 3 snmpgetcomm, or 4 snmpsetcomm parameter...
Linksys WAG54GS 1.0.6 (Wireless-G ADSL Gateway) - setup.cgi Cross-Site Scripting
Linksys WAG54GS 1.0.6 Wireless-G ADSL Gateway - setup.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/24682/info Linksys Wireless-G ADSL Gateway is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input...