Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, and 5.29.51 software, allows remote attackers to create DNS mappings as administrators, and conduct DNS poisoning attacks, via the NAME and ADDR parameters.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:35
Type | Values Removed | Values Added |
---|---|---|
References | () http://securityreason.com/securityalert/3026 - | |
References | () http://www.hakim.ws/2wire/demodns.html - | |
References | () http://www.securityfocus.com/archive/1/476595/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/27246 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/36044 - |
Information
Published : 2007-08-17 22:17
Updated : 2024-11-21 00:35
NVD link : CVE-2007-4389
Mitre link : CVE-2007-4389
CVE.ORG link : CVE-2007-4389
JSON object : View
Products Affected
2wire
- 2071_router
- 1701hg_router
- 1800hw_router
CWE