Sign-up

ID

VAR-201509-0224


CVE

CVE-2015-5991


TITLE

Phillipine Long Distance Telephone SpeedSurf 504AN and Kasda KW58293 Cross-Site Request Forgery Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2015-06101 // CNNVD: CNNVD-201509-214

DESCRIPTION

Cross-site request forgery (CSRF) vulnerability in form2WlanSetup.cgi on Philippine Long Distance Telephone (PLDT) SpeedSurf 504AN devices with firmware GAN9.8U26-4-TX-R6B018-PH.EN and Kasda KW58293 devices allows remote attackers to hijack the authentication of administrators for requests that perform setup operations, as demonstrated by modifying network settings. The Phillipine Long Distance Telephone (PLDT) company provides internet access in the Phillippines. The SpeedSurf 504AN and Kasda KW58293 modems distributed by PLDT contain multiple vulnerabilities. The BaudTec ADSL2+ Router may also be affected. The PLDT SpeedSurf 504AN and Kasda KW58293 form2WlanSetup.cgi pages fail to perform authentication correctly, allowing remote attackers to build malicious URIs, entice users to resolve, and perform malicious actions in the target user context. This may aid in other attacks. The former is a product of the Philippine PLDT company. The latter is a product of China Hongcheng (Kasda) Digital Technology Co., Ltd

Trust: 3.24

sources: NVD: CVE-2015-5991 // CERT/CC: VU#525276 // JVNDB: JVNDB-2015-004730 // CNVD: CNVD-2015-06101 // BID: 76527 // VULHUB: VHN-83952

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-06101

AFFECTED PRODUCTS

vendor:philippine long distance telephonemodel:speedsurf 504anscope:eqversion:gan9.8u26-4-tx-r6b018-hp.en

Trust: 1.6

vendor:philippine long distance telephonemodel:kasda kw58293scope:eqversion: -

Trust: 1.6

vendor:philippine long distance telephonemodel: - scope: - version: -

Trust: 0.8

vendor:kasdamodel:kw58293scope:eqversion:none

Trust: 0.8

vendor:kasdamodel:kw58293scope:eqversion:firmware

Trust: 0.8

vendor:philippine long distance telephone pldtmodel:speedsurf 504anscope: - version: -

Trust: 0.8

vendor:philippine long distance telephone pldtmodel:speedsurf 504anscope:eqversion:gan9.8u26-4-tx-r6b018-ph.en

Trust: 0.8

vendor:philippine long distance telephonemodel:speedsurf 504an gan9.8u26-4-tx-r6b018-ph.enscope: - version: -

Trust: 0.6

vendor:philippine long distance telephonemodel:kasda kw58293scope: - version: -

Trust: 0.6

vendor:philippine long distance telephonemodel:speedsurf 504an gan9.8u26-4-tx-r6b01scope: - version: -

Trust: 0.3

vendor:philippine long distance telephonemodel:kasda kw58293scope:eqversion:0

Trust: 0.3

sources: CERT/CC: VU#525276 // CNVD: CNVD-2015-06101 // BID: 76527 // JVNDB: JVNDB-2015-004730 // CNNVD: CNNVD-201509-214 // NVD: CVE-2015-5991

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-5991
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-5991
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2015-06101
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201509-214
value: MEDIUM

Trust: 0.6

VULHUB: VHN-83952
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-5991
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-06101
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-83952
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-06101 // VULHUB: VHN-83952 // JVNDB: JVNDB-2015-004730 // CNNVD: CNNVD-201509-214 // NVD: CVE-2015-5991

PROBLEMTYPE DATA

problemtype:CWE-352

Trust: 1.9

sources: VULHUB: VHN-83952 // JVNDB: JVNDB-2015-004730 // NVD: CVE-2015-5991

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201509-214

TYPE

cross-site request forgery

Trust: 0.6

sources: CNNVD: CNNVD-201509-214

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-004730

PATCH
title:KW58293url:http://www.kasda.cn/product_info.asp?id=232
Trust: 0.8
title:PLDT - Philippine Long Distance Telephone Companyurl:http://www.pldt.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-004730

EXTERNAL IDS
db:CERT/CCid:VU#525276
Trust: 4.2
db:NVDid:CVE-2015-5991
Trust: 3.4
db:JVNid:JVNVU98946427
Trust: 0.8
db:JVNDBid:JVNDB-2015-004730
Trust: 0.8
db:CNNVDid:CNNVD-201509-214
Trust: 0.7
db:CNVDid:CNVD-2015-06101
Trust: 0.6
db:BIDid:76527
Trust: 0.4
db:VULHUBid:VHN-83952
Trust: 0.1
sources:
            
            
            CERT/CC: VU#525276 // 
            
            
            
            CNVD: CNVD-2015-06101 // 
            
            
            
            VULHUB: VHN-83952 // 
            
            
            
            BID: 76527 // 
            
            
            
            JVNDB: JVNDB-2015-004730 // 
            
            
            
            CNNVD: CNNVD-201509-214 // 
            
            
            
            NVD: CVE-2015-5991

REFERENCES
url:http://www.kb.cert.org/vuls/id/525276
Trust: 3.4
url:about vulnerability notes
Trust: 0.8
url:contact us about this vulnerability
Trust: 0.8
url:provide a vendor statement
Trust: 0.8
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-5991
Trust: 0.8
url:http://jvn.jp/vu/jvnvu98946427/index.html
Trust: 0.8
url:https://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-5991
Trust: 0.8
url:http://www.pldt.com/
Trust: 0.3
sources:
            
            
            CERT/CC: VU#525276 // 
            
            
            
            CNVD: CNVD-2015-06101 // 
            
            
            
            VULHUB: VHN-83952 // 
            
            
            
            BID: 76527 // 
            
            
            
            JVNDB: JVNDB-2015-004730 // 
            
            
            
            CNNVD: CNNVD-201509-214 // 
            
            
            
            NVD: CVE-2015-5991

CREDITS
Eskie Cirrus James Maquilang
Trust: 0.3
sources:
            
            
            BID: 76527

SOURCES
db:CERT/CCid:VU#525276
db:CNVDid:CNVD-2015-06101
db:VULHUBid:VHN-83952
db:BIDid:76527
db:JVNDBid:JVNDB-2015-004730
db:CNNVDid:CNNVD-201509-214
db:NVDid:CVE-2015-5991

LAST UPDATE DATE
2025-04-12T23:14:17.989000+00:00

SOURCES UPDATE DATE
db:CERT/CCid:VU#525276date:2016-04-17T00:00:00
db:CNVDid:CNVD-2015-06101date:2015-09-22T00:00:00
db:VULHUBid:VHN-83952date:2015-09-21T00:00:00
db:BIDid:76527date:2015-08-31T00:00:00
db:JVNDBid:JVNDB-2015-004730date:2015-09-30T00:00:00
db:CNNVDid:CNNVD-201509-214date:2015-12-15T00:00:00
db:NVDid:CVE-2015-5991date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:CERT/CCid:VU#525276date:2015-08-31T00:00:00
db:CNVDid:CNVD-2015-06101date:2015-09-22T00:00:00
db:VULHUBid:VHN-83952date:2015-09-21T00:00:00
db:BIDid:76527date:2015-08-31T00:00:00
db:JVNDBid:JVNDB-2015-004730date:2015-09-18T00:00:00
db:CNNVDid:CNNVD-201509-214date:2015-08-31T00:00:00
db:NVDid:CVE-2015-5991date:2015-09-21T10:59:06.553