6 matches found
CVE-2015-8262
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
Input validation
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
CVE-2015-8262
Buffalo WZR-600DHP2 devices with firmware 2.09, 2.13, and 2.16 use an improper algorithm for selecting the ID value in the header of a DNS query, which makes it easier for remote attackers to spoof responses by predicting this value...
CVE-2015-8262
CVE-2015-8262 affects Buffalo AirStation Extreme N600 Router WZR-600DHP2 (firmware 2.09, 2.13, 2.16). The issue is use of insufficiently random values in DNS queries: DNS TXIDs are predictable and source ports can be static, enabling a remote attacker to spoof responses and misdirect LAN clients....
Buffalo AirStation Extreme N600 WZR-600DHP2 Router Security Bypass Vulnerability
The Buffalo AirStation Extreme N600 WZR-600DHP2 is a router product from the Buffalo Group of Japan. A security bypass vulnerability exists in the Buffalo AirStation Extreme N600 WZR-600DHP2 Router. An attacker can exploit this vulnerability to bypass security restrictions and gain unauthorized...
Buffalo AirStation Extreme N600 Router WZR-600DHP2 uses insufficiently random values for DNS queries
Overview Buffalo AirStation Extreme N600 Router WZR-600DHP2, firmware versions 2.09, 2.13, 2.16, and possibly others, uses insufficiently random values for DNS queries and is vulnerable to DNS spoofing attacks. Description CWE-330: Use of Insufficiently Random Values - CVE-2015-8262The Buffalo...