Details of VAR-201302-0584

ID

VAR-201302-0584

TITLE

Buffalo TeraStation Network Attached Storage (NAS) TS-Series file contains vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2013-01000

DESCRIPTION

Buffalo TeraStation Network Attached Storage (NAS) The TS-Series is a network storage device. Input passed to cgi-bin/sync.cgi via the \"gKey\" parameter is missing validation before use, allowing remote attackers to exploit the vulnerability to download arbitrary files.

Trust: 0.6

sources: CNVD: CNVD-2013-01000

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2013-01000

AFFECTED PRODUCTS

vendor:

buffalo

model:

terastation network attached storage ts-series

scope:

version:

1.x

Trust: 0.6

sources: CNVD: CNVD-2013-01000

EXTERNAL IDS

db:	SECUNIA	id:	52012	Trust: 0.6
db:	CNVD	id:	CNVD-2013-01000	Trust: 0.6

sources: CNVD: CNVD-2013-01000

REFERENCES

url:

http://secunia.com/advisories/52012/

Trust: 0.6

sources: CNVD: CNVD-2013-01000

SOURCES

db:

CNVD

id:

CNVD-2013-01000

LAST UPDATE DATE

2022-05-17T02:03:24.049000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2013-01000

date:

2013-02-19T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2013-01000

date:

2013-02-19T00:00:00