6 matches found
EUVD-2015-5934
Malware in sbrugna...
CVE-2015-5991
Cross-site request forgery CSRF vulnerability in form2WlanSetup.cgi on Philippine Long Distance Telephone PLDT SpeedSurf 504AN devices with firmware GAN9.8U26-4-TX-R6B018-PH.EN and Kasda KW58293 devices allows remote attackers to hijack the authentication of administrators for requests that perfo...
CVE-2015-5992
The CVE-2015-5992 entry concerns Cross-Site Scripting (XSS) in the form2WlanSetup.cgi page of PLDT SpeedSurf 504AN (firmware GAN9.8U26-4-TX-R6B018-PH.EN) and Kasda KW58293 devices. The vulnerability arises from insufficient filtering of the ssid parameter, enabling a remote attacker to inject arb...
CVE-2015-5991
The CVE-2015-5991 CSRF vulnerability affects PLDT SpeedSurf 504AN (firmware GAN9.8U26-4-TX-R6B018-PH.EN) and Kasda KW58293 devices, via the form2WlanSetup.cgi page. The underlying issue is improper/authentication bypass for administrative actions, enabling a remote attacker to hijack an administr...
CVE-2015-5991
Cross-site request forgery CSRF vulnerability in form2WlanSetup.cgi on Philippine Long Distance Telephone PLDT SpeedSurf 504AN devices with firmware GAN9.8U26-4-TX-R6B018-PH.EN and Kasda KW58293 devices allows remote attackers to hijack the authentication of administrators for requests that perfo...
Philippine Long Distance Telephone SpeedSurf 504AN and Kasda KW58293 contain multiple vulnerabilities
Overview The Phillipine Long Distance Telephone PLDT company provides internet access in the Phillippines. The SpeedSurf 504AN and Kasda KW58293 modems distributed by PLDT contain multiple vulnerabilities. The BaudTec ADSL2+ Router may also be affected. Description PLDT provides SpeedSurf 504AN,...