EUVD-2015-7213

Malware in sbrugna...

ReadyNet WRT300N-DD devices with firmware spoofing vulnerability

ReadyNet WRT300N-DD devices with firmware is a wireless router product from ReadyNet New Zealand. A spoofing vulnerability exists in ReadyNet WRT300N-DD devices with firmware 1.0.26. Since the devices use the same source port for DNS lookups, a remote attacker could select this number as the...

ReadyNet WRT300N-DD devices with firmware license issue vulnerability

ReadyNet WRT300N-DD devices with firmware is a wireless router product from ReadyNet New Zealand. An authorization issue vulnerability exists in ReadyNet WRT300N-DD devices with firmware 1.0.26. This allows remote attackers to gain administrative privileges by exploiting a LAN session...

CVE-2015-7281

Cross-site request forgery CSRF vulnerability on ReadyNet WRT300N-DD devices with firmware 1.0.26 allows remote attackers to hijack the authentication of arbitrary users...

Default credentials

The web administration interface on ReadyNet WRT300N-DD devices with firmware 1.0.26 has a default password of admin for the admin account, which allows remote attackers to obtain administrative privileges by leveraging a LAN session...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability on ReadyNet WRT300N-DD devices with firmware 1.0.26 allows remote attackers to hijack the authentication of arbitrary users...

CVE-2015-7281

The vulnerability CVE-2015-7281 affects ReadyNet WRT300N-DD devices running firmware 1.0.26. A CSRF flaw allows an attacker to hijack the authentication of arbitrary users, by exploiting requests made within a user’s session, effectively acting with the victim’s privileges. The CNVD entry for Rea...