CVE-2014-3760 in DAP-1150informação

Sumário

de MITRE

multiple cross-site request forgery (csrf) vulnerabilities in d-link dap 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that (1) enable or (2) disable the dmz in the firewall/dmz section via a request to index.cgi or (3) add (4) modify or (5) delete url-filter settings in the control/url-filter section via a request to index.cgi as demonstrated by adding a rule that blocks access to google.com.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

16/05/2014

Divulgação

16/05/2014

Moderação

aceite

Entrada

VDB-13606

CPE

pronto

Exploração

Descarregar

EPSS

0.00663

KEV

não

Atividades

muito baixo

Fontes

Interested in the pricing of exploits?

See the underground prices here!