CVE-2009-3962

Published Nov 17, 2009

Last updated 6 years ago

CVSS info 7.8

Overview

Description: The management interface on the 2wire Gateway 1700HG, 1701HG, 1800HW, 2071, 2700HG, and 2701HG-T with software before 5.29.52 allows remote attackers to cause a denial of service (reboot) via a %0d%0a sequence in the page parameter to the xslt program on TCP port 50001, a related issue to CVE-2006-4523.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:2wire:1700hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9455FA0E-50CB-4A96-8BEF-41488A5627D0"
          },
          {
            "criteria": "cpe:2.3:h:2wire:1701hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "49B9594A-5C1A-416F-9C52-DD82A224A016"
          },
          {
            "criteria": "cpe:2.3:h:2wire:1800hw:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "778314C3-A6E7-43BB-8302-5219C083F3E7"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2071:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "53C0CFBE-A6C8-4A93-93BD-3851F92321E9"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2700hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF0B7120-0BDA-4790-A176-2E4AD2C4C9D8"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2701hg-t:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A0FF925-91B0-45C2-B9C8-BE5D15A36BCC"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:2wire:1700hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C38D4061-58AB-4399-A6C6-75F4B4669D14",
            "versionEndIncluding": "5.29.51"
          },
          {
            "criteria": "cpe:2.3:h:2wire:1701hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07B3B7B0-F2B2-4BEA-AB0A-6F79CB1562FE",
            "versionEndIncluding": "5.29.51"
          },
          {
            "criteria": "cpe:2.3:h:2wire:1800hw:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EECEF960-F6E0-42BD-AC72-3A5AC767F3C0",
            "versionEndIncluding": "5.29.51"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2071:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2D8F0AEE-2EBB-46C2-B89E-2C2E4B799D88",
            "versionEndIncluding": "5.29.51"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2700hg:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8959726C-017F-4C7E-A43A-F8443C934554",
            "versionEndIncluding": "5.29.51"
          },
          {
            "criteria": "cpe:2.3:h:2wire:2701hg-t:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F35F1A6-3BE8-418A-B687-EA7472FBDB4A",
            "versionEndIncluding": "5.29.51"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References