ID
VAR-201704-0071
CVE
CVE-2016-10316
TITLE
plural Jensen of Scandinavia AS Air:Link Open redirect vulnerability in devices
Trust: 0.8
DESCRIPTION
Jensen of Scandinavia AS Air:Link 3G (AL3G) version 2.23m (Rev. 3), Air:Link 5000AC (AL5000AC) version 1.13, and Air:Link 59300 (AL59300) version 1.04 (Rev. 4) devices allow remote attackers to conduct Open Redirect attacks via the return-url parameter to /goform/formLogout. Air: Link3G, Air: Link5000AC, Air: Link59300 is the router of the Norwegian Jensenof Scandinavia company. An attacker can construct a malicious URI, entice the user to resolve, and redirect the user to any WEB site for phishing attacks. are all routers of Jensen of Scandinavia AS in Norway. Several Jensen of Scandinavia AS Air:Link products have security vulnerabilities. 3); Air: Link 5000AC (AL5000AC) prior to 1.13; Air: Link 59300 (AL59300) 1.04 (Rev
Trust: 2.25
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | jensenofscandinavia | model: | al3g | scope: | eq | version: | 2.23m | Trust: 1.6 |
| vendor: | jensenofscandinavia | model: | al5000ac | scope: | eq | version: | 1.13 | Trust: 1.6 |
| vendor: | jensenofscandinavia | model: | al59300 | scope: | eq | version: | 1.04 | Trust: 1.6 |
| vendor: | jensen of scandinavia as | model: | air:link 3g | scope: | eq | version: | 2.23m (rev.3) | Trust: 0.8 |
| vendor: | jensen of scandinavia as | model: | air:link 5000ac | scope: | eq | version: | 1.13 | Trust: 0.8 |
| vendor: | jensen of scandinavia as | model: | air:link 59300 | scope: | eq | version: | 1.04 (rev.4) | Trust: 0.8 |
| vendor: | jensen | model: | of scandinavia air:link 3g 2.23m (rev. | scope: | eq | version: | 3) | Trust: 0.6 |
| vendor: | jensen | model: | of scandinavia air:link 5000ac | scope: | eq | version: | 1.13 | Trust: 0.6 |
| vendor: | jensen | model: | of scandinavia air:link (rev. | scope: | eq | version: | 593001.044) | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-601 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
lack of information
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | Top Page | url: | http://www.jensenofscandinavia.com | Trust: 0.8 |
| title: | Multiple JensenofScandinaviaAir: Link \342\200\230return-url\342\200\231 parameter open redirect vulnerability patch | url: | https://www.cnvd.org.cn/patchInfo/show/92435 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2016-10316 | Trust: 3.1 |
| db: | JVNDB | id: | JVNDB-2016-008248 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201704-172 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2017-05306 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-89080 | Trust: 0.1 |
REFERENCES
| url: | https://www.riskbasedsecurity.com/research/rbs-2016-004.pdf | Trust: 3.1 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2016-10316 | Trust: 1.4 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-10316 | Trust: 0.8 |
SOURCES
| db: | CNVD | id: | CNVD-2017-05306 |
| db: | VULHUB | id: | VHN-89080 |
| db: | JVNDB | id: | JVNDB-2016-008248 |
| db: | CNNVD | id: | CNNVD-201704-172 |
| db: | NVD | id: | CVE-2016-10316 |
LAST UPDATE DATE
2025-04-20T23:34:27.915000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-05306 | date: | 2017-04-25T00:00:00 |
| db: | VULHUB | id: | VHN-89080 | date: | 2017-04-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2016-008248 | date: | 2017-05-08T00:00:00 |
| db: | CNNVD | id: | CNNVD-201704-172 | date: | 2017-04-07T00:00:00 |
| db: | NVD | id: | CVE-2016-10316 | date: | 2025-04-20T01:37:25.860 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-05306 | date: | 2017-04-25T00:00:00 |
| db: | VULHUB | id: | VHN-89080 | date: | 2017-04-03T00:00:00 |
| db: | JVNDB | id: | JVNDB-2016-008248 | date: | 2017-05-08T00:00:00 |
| db: | CNNVD | id: | CNNVD-201704-172 | date: | 2017-04-07T00:00:00 |
| db: | NVD | id: | CVE-2016-10316 | date: | 2017-04-03T05:59:00.677 |