Re: Multiple Vulnerabilities with Aztech Modem Routers

From: Federick Joe P Fajardo <fjpfajardo@ph.ibm.com>
To: bugtraq@securityfocus.com
Cc:
Subject: Re: Multiple Vulnerabilities with Aztech Modem Routers
Date:


The following CVE's have been assigned for this issues:

CVE-2014-6435 - Potential DoS attack 
Link to OSVDB ID: 111432 - http://osvdb.org/show/osvdb/111432

CVE-2014-6436 - Broken Session Management
Link to OSVDB ID: 111433 - http://osvdb.org/show/osvdb/111433

CVE-2014-6437 - File and Data Exposure
Link to OSVDB ID: 111434 - http://osvdb.org/show/osvdb/111434
Link to OSVDB ID: 111435 - http://osvdb.org/show/osvdb/111435

09/01/2014 - Notified vendor. No response.
09/12/2014 - Reported to Mitre
09/14/2014 - Initial public announcement.
09/19/2014 - CVE reservation.
09/19/2014 - Resend full-disclosure to vendor, awaiting response.

Complete reference: http://x.arpa.ph/fjpf/aztech.html






Copyright © 1995-2019 LinuxRocket.net. All rights reserved.