Bugtraq mailing list archives

Re: Multiple Vulnerabilities with Aztech Modem Routers

From: Federick Joe P Fajardo <fjpfajardo () ph ibm com>
Date: Fri, 19 Sep 2014 22:10:07 +0800

The following CVE's have been assigned for this issues:

CVE-2014-6435 - Potential DoS attack 
Link to OSVDB ID: 111432 - http://osvdb.org/show/osvdb/111432

CVE-2014-6436 - Broken Session Management
Link to OSVDB ID: 111433 - http://osvdb.org/show/osvdb/111433

CVE-2014-6437 - File and Data Exposure
Link to OSVDB ID: 111434 - http://osvdb.org/show/osvdb/111434
Link to OSVDB ID: 111435 - http://osvdb.org/show/osvdb/111435

09/01/2014 - Notified vendor. No response.
09/12/2014 - Reported to Mitre
09/14/2014 - Initial public announcement.
09/19/2014 - CVE reservation.
09/19/2014 - Resend full-disclosure to vendor, awaiting response.

Complete reference: http://x.arpa.ph/fjpf/aztech.html

Current thread:

Multiple Vulnerabilities with Aztech Modem Routers Federick Joe P Fajardo (Sep 15)
- Re: Multiple Vulnerabilities with Aztech Modem Routers Federick Joe P Fajardo (Sep 19)