Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:30374
HistoryMar 20, 2014 - 12:00 a.m.

[CVE-2014-0683]Router Cisco RV110W - RV215W - CVR100W - Bypass Login Page - Admin Password Disclosure

2014-03-2000:00:00
vulners.com
19

Title:

Router CISCO RV110W - RV215W - CVR100W - Bypass Login Page

Date:

05/03/2014

CVE Number:

CVE-2014-0683

Cisco Security Advisory:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-rpd

Status:

Reported to Cisco - Fixed in new firmware

Affected Products:

  • Cisco RV110W Wireless-N VPN Firewall running firmware versions 1.2.0.9
    and prior.
  • Cisco RV215W Wireless-N VPN Router running firmware versions 1.1.0.5 and
    prior.
  • Cisco CVR100W Wireless-N VPN Router running firmware versions 1.0.1.19
    and prior.

Exploitation-Technique:

Remote - Internal

Severity:

High

Details:

An attacker can bypass the login page of the router just manipulating the
POST data in the administration page (ex: 192.168.1.1) and gain access like
admin.
See the PDF for more details.
https://drive.google.com/file/d/0BzDR2c9r47AiMVlQWkVNVjE0REU/edit?usp=sharing

Affected Versions:

Cisco RV110W Wireless-N VPN Firewall running firmware versions 1.2.0.9 and
prior
Cisco RV215W Wireless-N VPN Router running firmware versions 1.1.0.5 and
prior
Cisco CVR100W Wireless-N VPN Router running firmware versions 1.0.1.19 and
prior

Proof of Concept:

See the PDF for more details.
https://drive.google.com/file/d/0BzDR2c9r47AiMVlQWkVNVjE0REU/edit?usp=sharing

Solution:

Update the router with the last firmware.