Exploit Huawei HG510 - Multiple Cross-Site Request Forgery Vulnerabilities

[Exploiter]

EDB-ID

33648

Проверка EDB

1. Пройдено

Автор

IVAN MARKOVIC

Тип уязвимости

REMOTE

Платформа

HARDWARE

CVE

N/A

Дата публикации

2010-02-16

source: https://www.securityfocus.com/bid/38261/info

Huawei HG510 is prone to multiple cross-site request-forgery vulnerabilities.

Successful exploits may allow attackers to run privileged commands on the affected device, change configuration, cause denial-of-service conditions, or inject arbitrary script code. Other attacks are also possible. 

The following example URI is available:

http://www.example.com/password.cgi?sysPassword=BASE64_NEW_PASSWORD