15 matches found
EUVD-2013-6777
Malware in sbrugna...
Cisco EPC3925 UPC Insecure Default Password Vulnerability
The Cisco EPC3925 is a home router device. An insecure default password vulnerability exists in the Cisco EPC3925 UPC. A remote attacker with knowledge of the default credentials could exploit this vulnerability to gain unauthorized access and perform unauthorized actions...
Cisco EPC3925 UPC Modem / Router default password vulnerability
No description provided by source...
Cisco EPC3925 UPC Modem / Router Default Passphrase
Cisco EPC3925 UPC modem/router default passphrase vulnerabilities ----------------------------------------------------------------- Platforms / Firmware confirmed affected: - Cisco EPC3925, ESIP-12-v302r125573-131230cupc Vulnerabilities --------------- Default SSID and passphrase can be calculate...
Cisco EPC3925 - Cross Site Request Forgery
Cisco EPC3925是美国思科(Cisco)公司的一款家用无线路由器设备。 Cisco EPC3925路由器中存在跨站请求伪造漏洞,该漏洞源于goform/Quicksetup URL没有正确验证请求。远程攻击者可借助Password和PasswordReEnter参数利用该漏洞更改密码。 Exploit Title: Cisco EPC3925 ? Cross Site Request Forgery Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage:...
Cisco EPC3925 - Persistent Cross-Site Scripting
Cisco EPC3925 - Persistent Cross-Site Scripting Exploit Title: Cisco EPC3925 - Persistent Cross Site Scripting Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.cisco.com Software Link: Not public Version: epc3925-E10-5-v302r125572-130520c Tested on...
Cisco EPC3925 - Persistent Cross-Site Scripting
Exploit Title: Cisco EPC3925 - Persistent Cross Site Scripting Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.cisco.com Software Link: Not public Version: epc3925-E10-5-v302r125572-130520c Tested on: Cisco EPC3925 CVE: N/A Description The paramet...
CVE-2013-6976
Cross-site request forgery CSRF vulnerability in goform/Quicksetup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a password via the Password and PasswordReEnter parameters, aka Bug ID CSCuh37496...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in goform/Quicksetup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a password via the Password and PasswordReEnter parameters, aka Bug ID CSCuh37496...
CVE-2013-6976
CVE-2013-6976 involves a CSRF flaw in Cisco EPC3925 devices’ goform/Quick_setup that lets an attacker hijack administrator sessions and change the password via Password and PasswordReEnter. Affected product: Cisco EPC3925 (router). Root cause: cross-site request forgery enabling unauthorized pass...
Cisco EPC3925跨站请求伪造漏洞
Cisco EPC3925是美国思科(Cisco)公司的一款家用无线路由器设备。 Cisco EPC3925路由器中存在跨站请求伪造漏洞,该漏洞源于goform/Quicksetup URL没有正确验证请求。远程攻击者可借助Password和PasswordReEnter参数利用该漏洞更改密码。 Exploit Title: Cisco EPC3925 � Cross Site Request Forgery Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage:...
Cisco EPC3925 - Cross Site Request Forgery
This proof of concept demonstrates that the admin password can be changed by an attacker in a CSRF attack. However, it seems like any setting in the device can be manipulated using an attack like this...
Cisco EPC3925 - Cross-Site Request Forgery
Cisco EPC3925 - Cross-Site Request Forgery Exploit Title: Cisco EPC3925 � Cross Site Request Forgery Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.cisco.com Software Link: Not public Version: epc3925-E10-5-v302r125572-130520c Tested on: Cisco...
Cisco EPC3925 Cross Site Request Forgery
Exploit Title: Cisco EPC3925 � Cross Site Request Forgery Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.cisco.com Software Link: Not public Version: epc3925-E10-5-v302r125572-130520c Tested on: Cisco EPC3925 CVE: N/A Description: This proof of...
Cisco EPC3925 - Cross-Site Request Forgery
Exploit Title: Cisco EPC3925 � Cross Site Request Forgery Google Dork: N/A Date: 12-11-2013 Exploit Author: Jeroen - IT Nerdbox Vendor Homepage: http://www.cisco.com Software Link: Not public Version: epc3925-E10-5-v302r125572-130520c Tested on: Cisco EPC3925 CVE: N/A Description: This proof of...