Details of VAR-E-201708-0289

ID

VAR-E-201708-0289

CVE

cve_id:

CVE-2017-12592

Trust: 0.3

sources: BID: 100589

TITLE

ASUS DSL-N10S Router CVE-2017-12592 Privilege Escalation Vulnerability

Trust: 0.3

sources: BID: 100589

DESCRIPTION

ASUS DSL-N10S Router is prone to a remote privilege-escalation vulnerability.
An attacker can exploit this issue to gain admin privileges and perform unauthorized actions.

Trust: 0.3

sources: BID: 100589

AFFECTED PRODUCTS

vendor:

asus

model:

dsl-n10s v2.1.16 apac

scope:

version:

Trust: 0.3

sources: BID: 100589

EXPLOIT

The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

Trust: 0.3

sources: BID: 100589

PRICE

Free

Trust: 0.3

sources: BID: 100589

TYPE

Design Error

Trust: 0.3

sources: BID: 100589

CREDITS

Bhaskar Borman

Trust: 0.3

sources: BID: 100589

EXTERNAL IDS

db:	NVD	id:	CVE-2017-12592	Trust: 0.3
db:	BID	id:	100589	Trust: 0.3

sources: BID: 100589

REFERENCES

url:	https://www.asus.com/in/networking/dsln10s/	Trust: 0.3
url:	https://iscouncil.blogspot.in/2017/08/multiple-vulnerabilities-in-asus.html	Trust: 0.3
url:	http://www.asus.com/	Trust: 0.3

sources: BID: 100589

SOURCES

db:

BID

id:

100589

LAST UPDATE DATE

2022-07-27T09:56:16.278000+00:00

SOURCES UPDATE DATE

db:

BID

id:

100589

date:

2017-08-18T00:00:00

SOURCES RELEASE DATE

db:

BID

id:

100589

date:

2017-08-18T00:00:00