| ID |
CVE-2007-4387
|
| Summary |
Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:h:2wire:1701hg_router:3.17.5:*:*:*:*:*:*:*
cpe:2.3:h:2wire:1701hg_router:3.17.5:*:*:*:*:*:*:*
-
cpe:2.3:h:2wire:1701hg_router:5.29.51:*:*:*:*:*:*:*
cpe:2.3:h:2wire:1701hg_router:5.29.51:*:*:*:*:*:*:*
-
cpe:2.3:h:2wire:2071_router:3.17.5:*:*:*:*:*:*:*
cpe:2.3:h:2wire:2071_router:3.17.5:*:*:*:*:*:*:*
-
cpe:2.3:h:2wire:2071_router:5.29.51:*:*:*:*:*:*:*
cpe:2.3:h:2wire:2071_router:5.29.51:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 4.3 (as of 15-10-2018 - 21:34) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
PARTIAL |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
| refmap
via4
|
| bugtraq | 20070815 Cross Site Request Forgery in 2wire routers | | osvdb | 37667 | | secunia | 26496 | | sreason | 3026 | | xf | 2wire-xslt-csrf(36044) |
|
| Last major update |
15-10-2018 - 21:34 |
| Published |
17-08-2007 - 22:17 |
| Last modified |
15-10-2018 - 21:34 |
