Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2323

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2009-2323
Last Modified 06 Jul 2009 12:00:00
Published 05 Jul 2009 12:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-2323

Summary

The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.

Vulnerable Systems


References

BID - 35563

BUGTRAQ - 20090702 Multiple Flaws in Axesstel MV 410R


Last Updated: 27 May 2016 10:50:51