EUVD-2013-3301

Malware in sbrugna...

CVE-2013-3366

Undocumented TELNET service in TRENDnet TEW-812DRU when a web page named backdoor contains an HTML parameter of password and a value of j78G¬DFdg24Mhw3...

Hardcoded credentials

Undocumented TELNET service in TRENDnet TEW-812DRU when a web page named backdoor contains an HTML parameter of password and a value of j78G¬DFdg24Mhw3...

CVE-2013-3366

Undocumented TELNET service in TRENDnet TEW-812DRU when a web page named backdoor contains an HTML parameter of password and a value of j78G¬DFdg24Mhw3...

CVE-2013-3366

The CVE-2013-3366 entry concerns TRENDnet TEW-812DRU with an undocumented TELNET service that can be triggered via a web page named “backdoor” containing an HTML parameter password and a value of j78G¬DFdg_24Mhw3. This vulnerability is documented across multiple sources (NVD, CVE listings) with h...

Buffer overflow

Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU...

CVE-2013-4659

Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU...

CVE-2013-4659

Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU...

CVE-2013-4659

CVE-2013-4659 describes a buffer overflow in Broadcom ACSD (Wireless service) that allows remote code execution via a long string sent to TCP port 5916. Affected devices include ASUS RT-AC66U and other routers using Broadcom ACSD; multiple buffer overflow vectors have been reported. Public refere...

TRENDnet TEW-812DRU CSRF/Command Injection Root Exploit

No description provided by source. html head title TRENDnet TEW-812DRU CSRF - Command Injection Shell Exploit./title !-- CSRF Discovered by: Jacob Holcomb - Security Analyst @ Independent Security Evaluators Command Injections Discovered by: Jacob Holcomb & Kedy Liu - Security Analysts @...

CVE-2013-3098

Multiple cross-site request forgery CSRF vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for requests that 1 change admin credentials in a request to setSysAdm.cgi, 2 enable remote management or 3...

CVE-2013-3365

TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 wan network prefix to internet/ipv6.asp; 2 remote port to adm/management.asp; 3 pptp username, 4 pptp password, 5 ip, 6 gateway, 7 l2tp username, or 8 l2tp password to...

Design/Logic Flaw

TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 wan network prefix to internet/ipv6.asp; 2 remote port to adm/management.asp; 3 pptp username, 4 pptp password, 5 ip, 6 gateway, 7 l2tp username, or 8 l2tp password to...

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for requests that 1 change admin credentials in a request to setSysAdm.cgi, 2 enable remote management or 3...

CVE-2013-3365

TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the 1 wan network prefix to internet/ipv6.asp; 2 remote port to adm/management.asp; 3 pptp username, 4 pptp password, 5 ip, 6 gateway, 7 l2tp username, or 8 l2tp password to...

CVE-2013-3098

TRENDnet TEW-812DRU router is affected by CSRF vulnerabilities (CVE-2013-3098) in firmware

CVE-2013-3098

Multiple cross-site request forgery CSRF vulnerabilities in TRENDnet TEW-812DRU router with firmware before 1.0.9.0 allow remote attackers to hijack the authentication of administrators for requests that 1 change admin credentials in a request to setSysAdm.cgi, 2 enable remote management or 3...

CVE-2013-3365

TRENDnet TEW-812DRU router is affected by CSRF-related command injection vulnerabilities (CVE-2013-3365 and related CVE-2013-3098). Exploitation can allow an attacker with prior authentication to perform actions such as changing admin credentials, enabling remote management or port forwarding, or...

TRENDnet TEW-812DRU CSRF/Command Injection Root Exploit

Exploit for hardware platform in category web applications TRENDnet TEW-812DRU CSRF - Command Injection Shell Exploit. Please wait... //Request to enable port forwarding to the routers internal IP on port 23 //This exploit works without this request, but the exploit was more stable with it, so it...

TRENDnet TEW-812DRU - Cross-Site Request ForgeryCommand Injection Root

TRENDnet TEW-812DRU - Cross-Site Request ForgeryCommand Injection Root TRENDnet TEW-812DRU CSRF - Command Injection Shell Exploit. Please wait... //Request to enable port forwarding to the routers internal IP on port 23 //This exploit works without this request, but the exploit was more stable wi...