CVE

Id
66830  
CVE No.
CVE-2013-6883  
Status
Candidate  
Description
Cross-site request forgery (CSRF) vulnerability in CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote attackers to hijack the authentication of administrators for requests that modify the disk erase technique settings via unspecified vectors.  
Phase
Assigned (20131127)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
647068 66830 CVE-2013-6883 EXPLOIT-DB:30396  View
647069 66830 CVE-2013-6883 URL:http://www.exploit-db.com/exploits/30396  View
647070 66830 CVE-2013-6883 FULLDISC:20131212 Ditto Forensic FieldStation, multiple vulnerabilities  View
647071 66830 CVE-2013-6883 URL:http://seclists.org/fulldisclosure/2013/Dec/80  View
647072 66830 CVE-2013-6883 MISC:http://www.cru-inc.com/support/software-downloads/ditto-firmware-updates/ditto-firmware-release-notes-2013jun30a  View
647073 66830 CVE-2013-6883 MISC:http://www.cru-inc.com/support/software-downloads/ditto-firmware-updates/ditto-firmware-release-notes-2013oct15a  View
647074 66830 CVE-2013-6883 MISC:http://packetstormsecurity.com/files/124420/Ditto-Forensic-FieldStation-2013Oct15a-XSS-CSRF-Command-Execution.html  View
647075 66830 CVE-2013-6883 OSVDB:100999  View
647076 66830 CVE-2013-6883 URL:http://osvdb.org/100999  View
647077 66830 CVE-2013-6883 SECUNIA:55989  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
24225 JVNDB-2013-005800 devscripts の uscan における任意のコードを実行される脆弱性 devscripts の uscan には、任意のコードを実行される脆弱性が存在します。 CVE-2013-6888 66830 7.5 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-005800.html  View