Back to search
CVE-2008-6605
Published: Apr 6, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site request forgery (CSRF) vulnerability in the xslt script in the web-based management interface on the 2wire 1701HG, 1800HW, 2071HG, and 2700HG with firmware 3.17.5, 3.7.1, 4.25.19, or 5.29.51 allows remote attackers to hijack the intranet connectivity of arbitrary users for requests that cause a denial of service (network outage) via a page parameter with a % (percent) character followed by a non-alphanumeric character.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
32211
vdb-entry
x_refsource_BID
49835
vdb-entry
x_refsource_OSVDB
2wire-xslt-dos(46537)
vdb-entry
x_refsource_XF
7060
exploit
x_refsource_EXPLOIT-DB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now