Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0314

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2012-0314
Last Modified 08 Feb 2012 11:10:12
Published 02 Feb 2012 11:05:51
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0314

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities on the eAccess Pocket WiFi (aka GP02) router before 2.00 with firmware 11.203.11.05.168 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) initialize settings or (2) reboot the device.

Vulnerable Systems

Application

  • Emobile Pocket Wifi Firmware 11.203.11.05.168


References

JVNDB - JVNDB-2012-000010

JVN - JVN#33021167

CONFIRM - http://emobile.jp/topics/info20120201_01.html

BID - 51782

SECUNIA - 47795


Last Updated: 27 May 2016 10:56:27