Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0554

Overview

Vulnerability Score 9.4 9.4
CVE Id CVE-2015-0554
Last Modified 23 Jan 2015 03:43:03
Published 21 Jan 2015 01:59:50
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0554

Summary

The ADB (formerly Pirelli Broadband Solutions) P.DGA4001N router with firmware PDG_TEF_SP_4.06L.6 does not properly restrict access to the web interface, which allows remote attackers to obtain sensitive information or cause a denial of service (device restart) as demonstrated by a direct request to (1) wlsecurity.html or (2) resetrouter.html.

Vulnerable Systems

Operating System

  • Adb P.dga4001n Firmware Pdg Tef Sp 4.06l.6


References

EXPLOIT-DB - 35721

MISC - http://packetstormsecurity.com/files/129828/Pirelli-ADSL2-2-Wireless-Router-P.DGA4001N-Information-Disclosure.html


Last Updated: 27 May 2016 11:07:36