Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2015/02/20 12:0 a.m.124 views

Allegro RomPager 4.07 < 4.34 Multiple Vulnerabilities (Misfortune Cookie)

Binary data 8614.prm...

10CVSS7.7AI score0.63748EPSS
Exploits12References6
Tenable Nessus
Tenable Nessus
added 2014/12/30 12:0 a.m.562 views

Allegro RomPager HTTP Cookie Management Remote Code Execution Vulnerability (Misfortune Cookie)

Nessus was able to overwrite the request path by sending a specially crafted cookie to the remote web server. It is, therefore, affected by multiple vulnerabilities : - A flaw in HTTP cookie management in the embedded web server allows a remote attacker to execute arbitrary code with administrati...

10CVSS8.8AI score0.63748EPSS
Exploits12References6
CVE
CVE
added 2014/12/24 6:0 p.m.115 views

CVE-2014-9223

CVE-2014-9223 is a vulnerability in the RomPager embedded web server used by Huawei Home Gateway devices and other vendors. The issue is a digest authentication buffer overflow in RomPager’s cookie/auth processing, enabling a remote attacker to cause a denial of service and potentially execute ar...

10CVSS8.3AI score0.06026EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/12/24 6:0 p.m.24 views

CVE-2014-9223

Multiple buffer overflows in AllegroSoft RomPager, as used in Huawei Home Gateway products and other vendors and products, allow remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors related to authorization...

8.1AI score0.06026EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/12/24 12:0 a.m.1398 views

Allegro RomPager HTTP Cookie Management Remote Code Execution Vulnerability (Misfortune Cookie)

According to its banner, the remote host is running a version of Allegro Software RomPager 4.07 to 4.33. It is, therefore, affected by multiple vulnerabilities : - A flaw in HTTP cookie management in the embedded web server allows a remote attacker to execute arbitrary code with administrative...

10CVSS8.8AI score0.63748EPSS
Exploits12References6
Huawei
Huawei
added 2014/12/19 12:0 a.m.71 views

Security Advisory-Multiple Vulnerabilities in the RomPager Component of Home Gateway

RomPager is the embedded web server from AllegroSoft. RomPager component has two vulnerabilities. Some Huawei Home Gateway products use RomPager component and are affected by these two vulnerabilities. RomPager Authentication Security Bypass –Misfortune Cookie: The vulnerability is due to an...

10CVSS2.7AI score0.63748EPSS
Exploits12Affected Software2
CERT
CERT
added 2014/12/19 12:0 a.m.221 views

Multiple broadband routers use vulnerable versions of Allegro RomPager

Overview Multiple broadband routers use vulnerable versions of Allegro RomPager in current firmware releases. Description Many home and office/home office SOHO routers have been found to be using vulnerable versions of the Allegro RomPager embedded web server. Allegro RomPager versions prior to...

10CVSS9.2AI score0.63748EPSS
Exploits12References5
Check Point Advisories
Check Point Advisories
added 2014/12/02 12:0 a.m.10 views

RomPager Authorization Buffer Overflow Denial of Service (CVE-2014-9223)

A buffer overflow vulnerability exist in RomPager Web Server. A remote attacker could exploit this vulnerability by sending a crafted request to the vulnerable server causing a denial of service...

10CVSS4.7AI score0.06026EPSS
Exploits0
Rows per page
Query Builder