cve/CVE-2017-15654.md at 9ac4b787af2fa0b7575b28040edee6199ce9a667

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

746 B

Raw Blame History

CVE-2017-15654

Description

Highly predictable session tokens in the HTTPd server in all current versions (<= 3.0.0.4.380.7743) of Asus asuswrt allow gaining administrative router access.

POC

Reference

http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
http://seclists.org/fulldisclosure/2018/Jan/63

Github

No PoCs found on GitHub currently.

746 B Raw Blame History

CVE-2017-15654

Description

POC

Reference

Github

746 B

Raw Blame History