5 matches found
CVE-2017-7588
Summary of CVE-2017-7588 (Brother devices) : A flaw in web authentication on numerous Brother models (MFC/J-series, DCP, HL, ADS, etc.) where a valid AuthCookie cookie from a failed login response is echoed back, enabling an attacker to bypass login without correct credentials. Affected models in...
Brother MFC-J6520DW Password Change Authentication Bypass
ASCII hex -- md5 e.g. AuthCookie=c243a9ee18a9327bfd419f31e75e71c7 for 'test' password This information can be used to crack current password from exported cookie. Fix: Minimize network access to Brother MFC device or disable HTTPS interface. Confirmed vulnerable: MFC-J6973CDW MFC-J4420DW MFC-8710...
Brother MFC-J6520DW - Authentication Bypass / Password Change Exploit
Exploit for php platform in category web applications ASCII hex -- md5 e.g. AuthCookie=c243a9ee18a9327bfd419f31e75e71c7 for 'test' password This information can be used to crack current password from exported cookie. Fix: Minimize network access to Brother MFC device or disable HTTPS interface...
Brother MFC-J6520DW - Authentication Bypass / Password Change
ASCII hex -- md5 e.g. AuthCookie=c243a9ee18a9327bfd419f31e75e71c7 for 'test' password This information can be used to crack current password from exported cookie. Fix: Minimize network access to Brother MFC device or disable HTTPS interface. Confirmed vulnerable: MFC-J6973CDW MFC-J4420DW MFC-8710...
Brother MFC-J6520DW - Authentication Bypass Password Change
Brother MFC-J6520DW - Authentication Bypass Password Change ASCII hex -- md5 e.g. AuthCookie=c243a9ee18a9327bfd419f31e75e71c7 for 'test' password This information can be used to crack current password from exported cookie. Fix: Minimize network access to Brother MFC device or disable HTTPS...