PT-2009-4754 · Axesstel · Axesstel Mv 410R

Published

2009-07-05

Updated

2018-10-10

CVE-2009-2323

CVSS v2.0

5.8

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:P

Name of the Vulnerable Software and Affected Versions Axesstel MV 410R (affected versions not specified)

Description The issue allows remote attackers to more easily avoid detection of cross-site request forgery (CSRF) attacks. This is due to the web interface redirecting users back to the referring page after execution of some CGI scripts, such as the cgi-bin/wireless.cgi script.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2009-2323

Affected Products

Axesstel Mv 410R

PT-2009-4754 · Axesstel · Axesstel Mv 410R

CVE-2009-2323

Weakness Enumeration

Related Identifiers

Affected Products

References · 3