Computer Security
[EN] securityvulns.ru no-pyccku


WD My Net security vulnerabilities
updated since 19.07.2013
Published:12.08.2013
Source:
SecurityVulns ID:13199
Type:remote
Threat Level:
5/10
Description:Unauthorized access, information leakages.
Affected:WD : My Net N600
 WD : My Net N750
 WD : My Net N900
CVE:CVE-2013-5006 (main_internet.php on the Western Digital My Net N600 and N750 with firmware 1.03.12 and 1.04.16, and the N900 and N900C with firmware 1.05.12, 1.06.18, and 1.06.28, allows remote attackers to discover the cleartext administrative password by reading the "var pass=" line within the HTML source code.)
Original documentdocumentkyle Lovett, Update: Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials (12.08.2013)
 documentkyle Lovett, Full Disclosure - WD My Net N600, N750, N900, N900C - Plain Text Disclosure of Admin Credentials (29.07.2013)
 documentkyle Lovett, Western Digital My Net N600, N750, N900 and N900C - Plain text disclosure of administrative credentials (19.07.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod