Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| 1701hg_router | 2wire | 3.17.5 (including) | 3.17.5 (including) |
| 1701hg_router | 2wire | 5.29.51 (including) | 5.29.51 (including) |
| 2071_router | 2wire | 3.17.5 (including) | 3.17.5 (including) |
| 2071_router | 2wire | 5.29.51 (including) | 5.29.51 (including) |
References
- http://osvdb.org/37667
- http://secunia.com/advisories/26496
- http://securityreason.com/securityalert/3026
- http://www.securityfocus.com/archive/1/476595/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36044
- http://osvdb.org/37667
- http://secunia.com/advisories/26496
- http://securityreason.com/securityalert/3026
- http://www.securityfocus.com/archive/1/476595/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36044