Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
BID:30344
Info
Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
| Bugtraq ID: | 30344 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 22 2008 12:00AM |
| Updated: | Jul 23 2008 07:38PM |
| Credit: | Hirotaka Katagiri |
| Vulnerable: |
Century Systems XR-730 3.5 Century Systems XR-640-L2 1.6.1 Century Systems XR-640 1.6.7 Century Systems XR-540 3.5.2 Century Systems XR-510 3.5 Century Systems XR-440 1.7.7 Century Systems XR-410 1.6.8 Century Systems XR-1100 1.6 Century Software XR-410-L2 1.6.1 |
| Not Vulnerable: |
Century Systems XR-510 3.5.3 Century Systems XR-410 1.6.9 |
Discussion
Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
Multiple Century System XR routers are prone to a cross-site request-forgery vulnerability.
An attacker can exploit this issue to alter administrative configuration on affected devices. This may lead to further network-based attacks.
The following routers and corresponding firmware versions are vulnerable:
XR-410 ver1.6.8 and earlier
XR-440 ver1.7.7 and earlier
XR-510 ver3.5.0 and earlier
XR-540 ver3.5.2 and earlier
XR-640 ver1.6.7 and earlier
XR-730 ver3.5.0 and earlier
XR-1100 ver1.6. And earlier
XR-410-L2 ver1.6.1 and earlier
XR-640-L2 ver1.6.1 and earlier
Multiple Century System XR routers are prone to a cross-site request-forgery vulnerability.
An attacker can exploit this issue to alter administrative configuration on affected devices. This may lead to further network-based attacks.
The following routers and corresponding firmware versions are vulnerable:
XR-410 ver1.6.8 and earlier
XR-440 ver1.7.7 and earlier
XR-510 ver3.5.0 and earlier
XR-540 ver3.5.2 and earlier
XR-640 ver1.6.7 and earlier
XR-730 ver3.5.0 and earlier
XR-1100 ver1.6. And earlier
XR-410-L2 ver1.6.1 and earlier
XR-640-L2 ver1.6.1 and earlier
Exploit / POC
Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.
To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.
Solution / Fix
Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
Solution:
The vendor has released updates to address this issue. Please see the references for more information.
Solution:
The vendor has released updates to address this issue. Please see the references for more information.
References
Multiple Century System XR Routers Cross-Site Request Forgery Vulnerability
References:
References:
- XR-410 Version 1.6.9 Release Notes (Century System)
- XR-510 Version 3.5.3 Release Notes (Century System)
- JVN#67573833 Multiple Century Systems routers vulnerable to cross-site request f (JVN)