[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] Vulnerabilities in Transcend Wi-Fi SD Card

To: fulldisclosure@xxxxxxxxxxxx
Subject: Re: [FD] Vulnerabilities in Transcend Wi-Fi SD Card
From: Joey Kelly <joey@xxxxxxxxxxxxx>
Date: Mon, 27 Mar 2017 18:54:37 -0400

On 03/26/2017 04:43 PM, MustLive wrote:
> Brute Force (WASC-11):
> 
> There is no protection against BF attacks in admin panel 192.168.11.254,
> because Basic Authentication is used. It is unlikely that the owner will
> change login and password for admin panel. But if will change, then they
> can be picked up.

This conflates two issues, and anyhow, Basic Authentication is not a
problem (Digest won't be any more secure than Basic, if SSL is used...
is it present?).


> 
> Cross-Site Request Forgery (WASC-09):
> 
> There are CSRF vulnerabilities in admin panel. Such as this one: in login
> process there is no captcha, so besides lack of protection against BF, also
> CSRF attack can be made. It's possible to remotely enter into admin panel
> (with default login and password) for conducting further CSRF attacks.

CAPTCHA has nothing to do with CSRF. Neither do default credentials.


-- 
Joey Kelly
Minister of the Gospel and Linux Consultant
http://joeykelly.net
504-239-6550

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

References:
- [FD] Vulnerabilities in Transcend Wi-Fi SD Card
  - From: MustLive

Prev by Date: [FD] Outlook Remote Crashing Bug
Next by Date: [FD] APPLE-SA-2017-03-27-2 Safari 10.1
Previous by thread: [FD] Vulnerabilities in Transcend Wi-Fi SD Card
Next by thread: [FD] APPLE-SA-2017-03-27-1 Pages 6.1, Numbers 4.1, and Keynote 7.1 for Mac; Pages 3.1, Numbers 3.1, and Keynote 3.1 for iOS
Index(es):
- Date
- Thread