Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6449

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2008-6449
Last Modified 19 Aug 2009 01:23:51
Published 09 Mar 2009 10:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2008-6449

Summary

Cross-site request forgery (CSRF) vulnerability in multiple Century Systems routers including XR-410 before 1.6.9, XR-510 before 3.5.3, XR-440 before 1.7.8, and other XR series routers from XR-510 to XR-730 allows remote attackers to modify configuration as the administrator via unknown vectors.

Vulnerable Systems


References

XF - centurysystems-router-webinterface-csrf(43949)

CONFIRM - http://www.centurysys.co.jp/support/xr_common/JVN67573833.html

SECUNIA - 31173

JVNDB - JVNDB-2008-000042

JVN - JVN#67573833


Last Updated: 27 May 2016 10:49:12