PT-2009-4754 · Axesstel · Axesstel Mv 410R
Publicado
2009-07-05
·
Atualizado
2018-10-10
·
CVE-2009-2323
CVSS v2.0
5.8
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Axesstel MV 410R (affected versions not specified)
Description
The issue allows remote attackers to more easily avoid detection of cross-site request forgery (CSRF) attacks. This is due to the web interface redirecting users back to the referring page after execution of some CGI scripts, such as the
cgi-bin/wireless.cgi script.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Axesstel Mv 410R