27 matches found
EUVD-2007-6671
Malware in sbrugna...
Cisco Linksys WAG54GS CSRF Change Admin Password
No description provided by source. +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Cisco Linksys WAG54GS ADSL Router change admin password Date : 20-02-2012 Author : Ivano Binetti...
Linksys Wireless-G ADSL Gateway WAG54GS 1.0.6 Setup.CGI Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/24682/info Linksys Wireless-G ADSL Gateway is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. Attackers may exploit this issue by enticing...
Cisco Linksys WAG54GS Cross Site Request Forgery
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Cisco Linksys WAG54GS ADSL Router change admin password Date : 20-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site :...
Cisco Linksys WAG54GS - Cross-Site Request Forgery (Change Admin Password)
Cisco Linksys WAG54GS - Cross-Site Request Forgery Change Admin Password +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Cisco Linksys WAG54GS ADSL Router change admin password Date : 20-02-2012...
Cisco Linksys WAG54GS CSRF Change Admin Password
Exploit for hardware platform in category web applications +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Cisco Linksys WAG54GS ADSL Router change admin password Date : 20-02-2012 Author : Ivano...
Cisco Linksys WAG54GS - Cross-Site Request Forgery (Change Admin Password)
+--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Cisco Linksys WAG54GS ADSL Router change admin password Date : 20-02-2012 Author : Ivano Binetti http://ivanobinetti.com Vendor site :...
Linksys Wireless-G ADSL Gateway WAG54GS V2.0远程缓冲区溢出漏
BUGTRAQ ID: 32949 Linksys Wireless-G ADSL Gateway WAG54GS是一款无线路由器。 Linksys Wireless-G ADSL Gateway WAG54GS处理HTTP GET/POST请求存在问题,远程攻击者可以利用漏洞导致HTTPD服务崩溃。 问题是HTTPD服务对超多的HTTP GET/POST请求10240不正确,可触发基于堆栈的缓冲区溢出,造成服务崩溃 0 Linksys Wireless-G ADSL Gateway WAG54GS V2.0 1.2.20 Firmware 目前没有解决方案提供: a...
Default credentials
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2007-6707
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
CVE-2007-6707
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
CVE-2007-6708
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
CVE-2007-6709
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to perform actions as administrators via an arbitrary valid request to an administrative URI, as demonstrated by 1 a Restore Facto...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2007-3574...
CVE-2007-6709
The Cisco Linksys WAG54GS Wireless-G ADSL Gateway with 1.01.03 and earlier firmware has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access...
CVE-2007-6709
CVE-2007-6709 affects the Cisco Linksys WAG54GS Wireless-G ADSL Gateway (firmware 1.01.03 and earlier). The root cause is a default password policy where the admin account uses the password “admin,” enabling remote attackers to gain access. Public details in the provided documents confirm the vul...
CVE-2007-6708
The CVE-2007-6708 entry describes CSRF vulnerabilities in the Cisco Linksys WAG54GS Wireless-G ADSL Gateway (firmware 1.01.03 and earlier). An attacker can forge requests to setup.cgi to perform admin actions without authentication, demonstrated by (1) Restore Factory Defaults via the mtenRestore...
CVE-2007-6707
CVE-2007-6707 describes multiple XSS vulnerabilities in the Cisco Linksys WAG54GS Wireless-G ADSL Gateway (firmware 1.01.03 and earlier) via the device’s web interface, enabling remote script injection through unspecified vectors. The connected records confirm affected product and firmware family...