A vulnerability was found in Cisco Linksys E1500/E2500. It has been classified as critical. This affects some unknown functionality of the component Password Reset. The manipulation with an unknown input leads to a weak authentication vulnerability. CWE is classifying the issue as CWE-287. This is going to have an impact on confidentiality, and integrity.

The bug was discovered 10/19/2012. The weakness was released 02/05/2013 by Michael Messner (m1k3) with s3cur1ty as m1adv2013-004 as confirmed advisory (Website). It is possible to read the advisory at s3cur1ty.de. The vendor was not involved in the public release. This vulnerability is uniquely identified as CVE-2013-2678 since 03/22/2013. It is possible to initiate the attack remotely. A authentication is required for exploitation. Technical details are unknown but a public exploit is available.

A public exploit has been developed by m-1-k-3 and been published immediately after the advisory. It is declared as proof-of-concept. The exploit is shared for download at exploit-db.com. The vulnerability was handled as a non-public zero-day exploit for at least 109 days. During that time the estimated underground price was around $5k-$25k.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the vulnerability database at SecurityFocus (BID 57760). Entries connected to this vulnerability are available at 7608, 7609, 7610 and 7695.

Productinfoedit

Vendor

• Cisco

Name

• Linksys

CPE 2.3infoedit

• 🔍
• 🔍

CPE 2.2infoedit

• 🔍
• 🔍

CVSSv3infoedit

CVSSv2infoedit

Exploitinginfoedit

Threat Intelligenceinfoedit

Countermeasuresinfoedit

Timelineinfoedit

Sourcesinfoedit

Entryinfoedit

Comments