16 matches found
EUVD-2007-4803
Malware in sbrugna...
Multiple vulnerabilities in Buffalo AirStation WHR-G54S
Overview Buffalo AirStation WHR-G54S contains multiple vulnerabilities listed below. Directory Traversal - CVE-2020-5605 Cross-site Scripting - CVE-2020-5606 RyotaK reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...
JVN#09166495: Multiple vulnerabilities in Buffalo AirStation WHR-G54S
Buffalo AirStation WHR-G54S contains multiple vulnerabilities listed below. Directory Traversal - CVE-2020-5605 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N| Base Score: 4.1 CVSS v2| AV:A/AC:L/Au:S/C:P/I:N/A:N| Base Score: 2.7 Cross-site Scripting -...
Buffalo AirStation Detection (HTTP)
HTTP based detection of Buffalo AirStation. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Buffalo AirStation Extreme N600 WZR-600DHP2 Router Security Bypass Vulnerability
The Buffalo AirStation Extreme N600 WZR-600DHP2 is a router product from the Buffalo Group of Japan. A security bypass vulnerability exists in the Buffalo AirStation Extreme N600 WZR-600DHP2 Router. An attacker can exploit this vulnerability to bypass security restrictions and gain unauthorized...
Buffalo AirStation Extreme N600 Router WZR-600DHP2 uses insufficiently random values for DNS queries
Overview Buffalo AirStation Extreme N600 Router WZR-600DHP2, firmware versions 2.09, 2.13, 2.16, and possibly others, uses insufficiently random values for DNS queries and is vulnerable to DNS spoofing attacks. Description CWE-330: Use of Insufficiently Random Values - CVE-2015-8262The Buffalo...
AirStation series and BroadStation series vulnerable to cross-site request forgery
Overview Buffalo's AirStation Series and BroadStation Series routers are vulnerable to cross-site request forgery. Buffalo's AirStation series and BroadStation series routers have a web administration interface that can be accessed from a web browser to configure their functional settings. The we...
JVN#71872818 AirStation series and BroadStation series vulnerable to cross-site request forgery
Buffalo's AirStation series and BroadStation series routers have a web administration interface that can be accessed from a web browser to configure their functional settings. The web administration interface is vulnerable to cross-site request forgery. Impact If the administrator of such a produ...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as...
CVE-2007-4822
Cross-site request forgery CSRF vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as...
CVE-2007-4822
CVE-2007-4822 affects Buffalo AirStation WHR-G54S (v1.20). A CSRF flaw in the device management interface allows remote attackers to modify configuration via HTTP requests to cgi-bin/cgi pages (e.g., ap.html, filter_ip.html) using res and inp parameters. Impact: integrity partially affected; conf...
CVE-2007-4822
Cross-site request forgery CSRF vulnerability in the device management interface in Buffalo AirStation WHR-G54S 1.20 allows remote attackers to make configuration changes as an administrator via HTTP requests to certain HTML pages in the res parameter with an inp req parameter to cgi-bin/cgi, as...
Buffalo AirStation WHR-G54S CSRF vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Louhi Networks Oy -= Security Advisory =- Advisory: Buffalo AirStation WHR-G54S Web Management CSRF vulnerability Release Date: 2007-09-07 Last Modified: 2007-09-07 Authors: Henri Lindberg, Associate of ISC henri d0t lindberg at louhi d0t fi...
Buffalo AirStation WHR-G54S crossite request forgery
Request forgery in administration interface...
buffalo AirStation G54 - (WBR-G54 ) DoS
Hellow! I found bad bug/owerflow for buffalo g54 airstions: here my simple tests: schem of tests: I used 2 broadband routers Airstation WBR-g54 first named: g54-01, second - g54-02 both broadband routers set to pear-to-pear connection mode not point- multipoint atacker...
Buffalo AirStation DoS
Small packet flood causes station to hang...