[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Linksys Cisco Wag120N CSRF Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Linksys Cisco Wag120N CSRF Vulnerability
From: tadeu1@xxxxxxxxx
Date: Fri, 25 Feb 2011 13:01:28 -0700

I would like to recommend to people who want to test the code to disable/wipe 
out unnecessary options such as "remote_management" and "http_wanport" since 
they could give eventual outside attacker chances of authentication.

Another doubt lies on the possibility that this code implictly relies on a 
previous form of authentication for being effective.

Prev by Date: DoS Condition with Altigen VoIP Phone Systems
Next by Date: [USN-1071-1] Linux kernel vulnerabilities
Previous by thread: Linksys Cisco Wag120N CSRF Vulnerability
Next by thread: prestashop vuln: sql injection submitted to bugtraq@xxxxxxxxxxxxxxxxx
Index(es):
- Date
- Thread