EUVD-2014-0375

Malware in sbrugna...

Huawei Echo Life HG8247 HTML注入漏洞

Bugtraq ID:66594 CVE ID:CVE-2014-0337 Huawei Echo Life HG8247是一款光纤路由器。 Huawei Echo Life HG8247 optical router V1R006C00S120版本才能在一个存储型跨站脚本漏洞，允许攻击者通过提交恶意username，在"failed log-in attempts over telnet"日志中创建恶意条目，当恶意条目被查看时可获取敏感信息或劫持用户会话。 0 Huawei Echo Life HG8247 Huawei Echo Life HG8247 HG8247...

CVE-2014-0337

Cross-site scripting XSS vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML via an invalid TELNET connection attempt with a crafted username that is not properly handled during...

Cross site scripting

Cross-site scripting XSS vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML via an invalid TELNET connection attempt with a crafted username that is not properly handled during...

CVE-2014-0337

Huawei Echo Life HG8247 optical routers are affected by a stored cross-site scripting (XSS) vulnerability in the web interface. The issue occurs when a crafted username is submitted during a Telnet login attempt, creating malicious entries in the "failed log-in attempts over telnet" log view that...

CVE-2014-0337

Cross-site scripting XSS vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML via an invalid TELNET connection attempt with a crafted username that is not properly handled during...

Huawei Echo Life HG8247 optical router XSS vulnerability

Overview Huawei Echo Life HG8247 optical router contains a stored cross-site scripting XSS vulnerability Description It has been reported that Huawei Echo Life HG8247 optical routers running software version V1R006C00S120 or earlier contain a stored cross-site scripting XSS vulnerability. An...