17 matches found
EUVD-2015-7209
Malware in sbrugna...
EUVD-2015-7210
Malware in sbrugna...
EUVD-2015-7208
Malware in sbrugna...
Amped Wireless R10000 devices with firmware cross-site request forgery vulnerability
Amped Wireless R10000 devices with firmware are the R10000 series routers from Amped Wireless. A cross-site request forgery vulnerability exists in Amped Wireless R10000 devices with firmware version 2.5.2.11. This allows remote attackers to hijack the authentication of arbitrary user identities...
Amped Wireless R10000 devices with firmware credential management vulnerability
Amped Wireless R10000 devices with firmware are the R10000 series routers from Amped Wireless. A credential management vulnerability exists in Amped Wireless R10000 devices with firmware 2.5.2.11. The device's web management interface has an administrator account, which allows remote attackers to...
Amped Wireless R10000 devices with firmware spoofing vulnerability
Amped Wireless R10000 devices with firmware are the R10000 series routers from Amped Wireless. A security vulnerability exists in Amped Wireless R10000 devices with firmware version 2.5.2.11, which originates from the use of an incorrect algorithm to select the ID value in the header of a DNS...
CVE-2015-7279
Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
CVE-2015-7278
Cross-site request forgery CSRF vulnerability on Amped Wireless R10000 devices with firmware 2.5.2.11 allows remote attackers to hijack the authentication of arbitrary users...
CVE-2015-7277
The web administration interface on Amped Wireless R10000 devices with firmware 2.5.2.11 has a default password of admin for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability on Amped Wireless R10000 devices with firmware 2.5.2.11 allows remote attackers to hijack the authentication of arbitrary users...
Input validation
Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
CVE-2015-7277
Amped Wireless R10000 router (firmware 2.5.2.11) is affected by CVE-2015-7277 due to use of default admin credentials (admin:admin). A LAN-attacker can gain administrative privileges via the web management interface, enabling full control of the device. Root cause: default credentials configured ...
CVE-2015-7278
CVE-2015-7278 affects Amped Wireless R10000 routers running firmware version 2.5.2.11. It is a Cross-Site Request Forgery (CSRF) vulnerability that enables a remote attacker to hijack the authentication of an active user session via the device’s web administration interface. Public sources in the...
CVE-2015-7279
Summary: CVE-2015-7279 affects Amped Wireless R10000 devices running firmware 2.5.2.11. The root cause is an improper algorithm for selecting the DNS query ID in the header, making the TXID predictable. This enables remote attackers to spoof DNS responses and mislead LAN clients to contact attack...
CVE-2015-7279
Amped Wireless R10000 devices with firmware 2.5.2.11 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
CVE-2015-7278
Cross-site request forgery CSRF vulnerability on Amped Wireless R10000 devices with firmware 2.5.2.11 allows remote attackers to hijack the authentication of arbitrary users...
Amped Wireless R10000 router contains multiple vulnerabilities
Overview Amped Wireless R10000 router, firmware version 2.5.2.11, uses default credentials, is vulnerable to cross-site request forgery, and uses insufficiently random values for DNS queries. Description CWE-255: Credentials Management - CVE-2015-7277The Amped Wireless R10000 web administration...