ID
VAR-E-201203-0531
TITLE
Sitecom WLM-2501 Multiple Cross Site Request Forgery Vulnerabilities
Trust: 0.3
DESCRIPTION
Sitecom WLM-2501 is prone to multiple cross-site request-forgery vulnerabilities because the device fails to properly validate HTTP requests.
Attackers can exploit these issues to gain unauthorized access to the affected device and perform certain administrative actions.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | sitecom | model: | wlm-2501 | scope: | eq | version: | 0 | Trust: 0.3 |
EXPLOIT
An attacker can exploit these issues by enticing an unsuspecting user to follow a malicious URI.
The following example requests are available:
Bullet list:
<li><a href="/data/vulnerabilities/exploits/52700.txt">/data/vulnerabilities/exploits/52700.txt</a></li>
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Design Error
Trust: 0.3
CREDITS
Ivano Binetti
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 52700 | Trust: 0.3 |
REFERENCES
| url: | http://www.webapp-security.com/2012/03/sitecom-wlm-2501-multiple-csrf-vulnerabilities/ | Trust: 0.3 |
| url: | http://www.sitecom.com/wireless-modem-router-300n/p/859 | Trust: 0.3 |
SOURCES
| db: | BID | id: | 52700 |
LAST UPDATE DATE
2022-07-27T09:35:43.154000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 52700 | date: | 2012-03-22T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 52700 | date: | 2012-03-22T00:00:00 |