Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4497

Overview

Vulnerability Score 3.3 3.3
CVE Id CVE-2011-4497
Last Modified 21 Nov 2011 12:00:00
Published 21 Nov 2011 06:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector ADJACENT_NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4497

Summary

QIS_wizard.htm on the ASUS RT-N56U router with firmware before 1.0.1.4o allows remote attackers to obtain the administrator password via a flag=detect request.

Vulnerable Systems

Application

  • Asus Rt-n56u Firmware 1.0.0.9

  • Asus Rt-n56u Firmware 1.0.1.2

  • Asus Rt-n56u Firmware 1.0.1.3

  • Asus Rt-n56u Firmware 1.0.1.4


References

CERT-VN - VU#200814


Last Updated: 27 May 2016 10:57:48