7 matches found
CVE-2013-0126
Multiple cross-site request forgery CSRF vulnerabilities in index.cgi on the Verizon FIOS Actiontec MI424WR-GEN3I router with firmware 40.19.36 allow remote attackers to hijack the authentication of administrators for requests that 1 add administrative accounts via the username and userlevel...
CVE-2013-0126
CVE-2013-0126 affects the Verizon FIOS Actiontec MI424WR-GEN3I router (firmware 40.19.36). The vulnerability is multiple CSRF flaws in index.cgi that allow a remote attacker to hijack administrator authentication by (1) adding administrative accounts via the username and user_level parameters or ...
Verizon Fios Router MI424WR-GEN3I - Cross-Site Request Forgery
Exploit Title: Verizon Fios Router CSRF Admin Shell Date: Discovered and reported January 2013 Author: Jacob Holcomb/Gimppy - Security Analyst @ Independent Security Evaluators Software: Verizon FIOS Router - Firmware 40.19.36 http://verizon.com CVE: CVE-2013-0126 Advisory/Video:...
Verizon Fios Router MI424WR-GEN3I CSRF
Exploit Title: Verizon Fios Router CSRF Admin Shell Date: Discovered and reported January 2013 Author: Jacob Holcomb/Gimppy - Security Analyst @ Independent Security Evaluators Software: Verizon FIOS Router - Firmware 40.19.36 http://verizon.com CVE: CVE-2013-0126 Advisory/Video:...
Verizon Fios Router MI424WR-GEN3I - Cross-Site Request Forgery
Verizon Fios Router MI424WR-GEN3I - Cross-Site Request Forgery Exploit Title: Verizon Fios Router CSRF Admin Shell Date: Discovered and reported January 2013 Author: Jacob Holcomb/Gimppy - Security Analyst @ Independent Security Evaluators Software: Verizon FIOS Router - Firmware 40.19.36...
Verizon Fios Actiontec model MI424WR-GEN3I router vulnerable to cross-site request forgery
Overview The Verizon FIOS Actiontec router model MI424WR-GEN3I is susceptible to cross-site request forgery attacks. CWE-352 Description The Verizon FIOS Actiontec router model MI424WR-GEN3I is susceptible to cross-site request forgery attacks. CWE-352 A remote attacker that is able to trick a us...
CentOS 5 : squirrelmail (CESA-2013:0126)
An updated squirrelmail package that fixes one security issue and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...