CVE-2011-4005

Cross-site request forgery (CSRF) vulnerability in the Services Ready Platform Configuration Utility web interface on the Cisco Small Business SRP521W, SRP526W, and SRP527W with firmware before 1.1.24 and the Small Business SRP541W, SRP546W, and SRP547W with firmware before 1.2.1 allows remote attackers to hijack the authentication of administrators for requests that execute arbitrary commands, aka Bug ID CSCtr45124.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/46664
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111102-srp500	Vendor Advisory
http://www.securityfocus.com/bid/50495
http://www.securitytracker.com/id?1026266
https://exchange.xforce.ibmcloud.com/vulnerabilities/71103

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:h:cisco:small_business_srp521w::::::::
	cpe:2.3:h:cisco:small_business_srp526w::::::::
	cpe:2.3:h:cisco:small_business_srp527w::::::::

OR	cpe:2.3:a:cisco:small_business_srp520_series_firmware::::::::
	cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.00.06:::::::*
	cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.01:::::::*
	cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.19_mr3:::::::*

Configuration 2 (hide)

AND

OR	cpe:2.3:h:cisco:small_business_srp541w::::::::
	cpe:2.3:h:cisco:small_business_srp546w::::::::
	cpe:2.3:h:cisco:small_business_srp547w::::::::

OR	cpe:2.3:a:cisco:small_business_srp540_series_firmware::::::::
	cpe:2.3:a:cisco:small_business_srp540_series_firmware:1.02.00:::::::*

History

No history.

Information

Published : 2011-11-03 10:55

Updated : 2024-02-28 11:41

NVD link : CVE-2011-4005

Mitre link : CVE-2011-4005

CVE.ORG link : CVE-2011-4005

JSON object : View

Products Affected

cisco

small_business_srp547w
small_business_srp540_series_firmware
small_business_srp541w
small_business_srp521w
small_business_srp527w
small_business_srp520_series_firmware
small_business_srp526w
small_business_srp546w

CWE

CWE-352

Cross-Site Request Forgery (CSRF)

{"id": "CVE-2011-4005", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2011-11-03T10:55:08.700", "references": [{"url": "http://secunia.com/advisories/46664", "source": "ykramarz@cisco.com"}, {"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111102-srp500", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/50495", "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id?1026266", "source": "ykramarz@cisco.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71103", "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "Cross-site request forgery (CSRF) vulnerability in the Services Ready Platform Configuration Utility web interface on the Cisco Small Business SRP521W, SRP526W, and SRP527W with firmware before 1.1.24 and the Small Business SRP541W, SRP546W, and SRP547W with firmware before 1.2.1 allows remote attackers to hijack the authentication of administrators for requests that execute arbitrary commands, aka Bug ID CSCtr45124."}, {"lang": "es", "value": "Vulnerabilidad de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en la interfaz web de la utilidad de configuraci\u00f3n de plataforma de Services Ready en Cisco Small Business SRP521W, SRP526W, and SRP527W con firmware anterior a v1.1.24 y the Small Business SRP541W, SRP546W, y SRP547W con firmware anterior a v1.2.1, permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores para solicitudes que ejecutan comandos de su elecci\u00f3n, Bug ID CSCtr45124."}], "lastModified": "2017-08-29T01:30:26.507", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:small_business_srp521w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0015C660-EE26-4CDF-BD7D-C72BFB9EAAE7"}, {"criteria": "cpe:2.3:h:cisco:small_business_srp526w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FBA0CB09-45C2-4BF0-B71F-9E7694A8CFD9"}, {"criteria": "cpe:2.3:h:cisco:small_business_srp527w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D93AFBA4-A13F-4FED-A16B-07FD4DAEF5BD"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:small_business_srp520_series_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5549B8AC-6C6C-4384-A215-A3A121B9F1D3", "versionEndIncluding": "1.01.23"}, {"criteria": "cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.00.06:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "514A9417-5DF1-45E3-A331-A2CDAB1EE215"}, {"criteria": "cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B17BD94-F5F8-43BF-AFAE-CDE5459DACDF"}, {"criteria": "cpe:2.3:a:cisco:small_business_srp520_series_firmware:1.01.19_mr3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C5E1A47-4E82-4243-A932-FB756F5FE05A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:small_business_srp541w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8731C711-919A-4956-9F23-3575B98D63C7"}, {"criteria": "cpe:2.3:h:cisco:small_business_srp546w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46DD8C08-0967-4E65-BB58-45FAFDE32F4F"}, {"criteria": "cpe:2.3:h:cisco:small_business_srp547w:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CD75516-8215-452E-8000-DB1D32D2CAA5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:small_business_srp540_series_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54418EED-D54A-415B-9696-57B5C9D7F97F", "versionEndIncluding": "1.02.01_mr2"}, {"criteria": "cpe:2.3:a:cisco:small_business_srp540_series_firmware:1.02.00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0759AFB3-7B3D-43DF-BC36-7695AA333054"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}