CVE-2007-4387

Name of the Vulnerable Software and Affected Versions 2wire 1701HG Gateway router versions 3.17.5 2wire 2071 Gateway router versions 5.29.51

Description A cross-site request forgery issue exists in the /xslt endpoint of the affected routers, allowing remote attackers to make certain configuration changes with administrator privileges.

Recommendations For 2wire 1701HG Gateway router version 3.17.5, update to a version that fixes this issue. For 2wire 2071 Gateway router version 5.29.51, update to a version that fixes this issue. As a temporary workaround, consider restricting access to the /xslt endpoint to minimize the risk of exploitation.