NVD

Id
1219  
Name
CVE-2008-1260  
Description
Multiple cross-site request forgery (CSRF) vulnerabilities on the Zyxel P-2602HW-D1A router with 3.40(AJZ.1) firmware allow remote attackers to (1) make the admin web server available on the Internet (WAN) interface via the WWWAccessInterface parameter to Forms/RemMagWWW_1 or (2) change the IP whitelisting timeout via the StdioTimout parameter to Forms/rpSysAdmin_1.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-03  
Published
2008-03-10  
Modified Date
2010-07-16  
Seq
2008-1260  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
7752 1219 CVE-2008-1260 http://www.gnucitizen.org/projects/router-hacking-challenge/  View
7753 1219 CVE-2008-1260 20080301 The Router Hacking Challenge is Over!  View
7754 1219 CVE-2008-1260 zyxel-p2602hw-multiple-csrf(41170)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50258 JVNDB-2008-005568 Zyxel P-2602HW-D1A ルータ上におけるクロスサイトリクエストフォージェリの脆弱性 Zyxel P-2602HW-D1A ルータ上には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2008-1260 31373 CVE-2008-1260 1219 4.3 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005568.html 2008-03-10 2012-12-20 View