CVE-2013-6976
published 2013-12-19CVE-2013-6976: Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of…
PriorityP340medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
3.65%
88.2th percentile
Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a password via the Password and PasswordReEnter parameters, aka Bug ID CSCuh37496.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Cisco EPC3925 - Persistent Cross-Site Scripting
exploitdb·2013-12-21
CVE-2013-6976 Cisco EPC3925 - Persistent Cross-Site Scripting
Cisco EPC3925 - Persistent Cross-Site Scripting
---
#######################################################################
# Exploit Title: Cisco EPC3925 - Persistent Cross Site Scripting
# Google Dork: N/A
# Date: 12-11-2013
# Exploit Author: Jeroen - IT Nerdbox
# Vendor Homepage: http://www.cisco.com
# Software Link: Not public
# Version: epc3925-E10-5-v302r125572-130520c
# Tested on: Cisco EPC3925
# CVE: N/A
#######################################################################
# Description
# The parameter DdnsHostName is vulnerable to Persistent Cross Site Scripting.
# However, there is client side input validation, which can easily be bypassed.
#
# Location:
#
# POST http://[target]/goform/Setup_DDNS
#
# Parameters:
#
#DdnsService=0&DdnsUserName=xxx&DdnsPassw
Exploit-DB
Cisco EPC3925 - Cross-Site Request Forgery
exploitdb·2013-12-16
CVE-2013-6976 Cisco EPC3925 - Cross-Site Request Forgery
Cisco EPC3925 - Cross-Site Request Forgery
---
#######################################################################
# Exploit Title: Cisco EPC3925 � Cross Site Request Forgery
# Google Dork: N/A
# Date: 12-11-2013
# Exploit Author: Jeroen - IT Nerdbox
# Vendor Homepage: http://www.cisco.com
# Software Link: Not public
# Version: epc3925-E10-5-v302r125572-130520c
# Tested on: Cisco EPC3925
# CVE: N/A
#######################################################################
# Description:
#
# This proof of concept demonstrates that the admin password can be
# changed by an attacker in a CSRF attack. However, it seems like any
# setting in the device can be manipulated using an attack like this.
#
#
# Side note: The device does not ask for the current password.
#
#
# Location:
#
# POST htt
No writeups or analysis indexed.
http://osvdb.org/101097http://packetstormsecurity.com/files/124449/Cisco-EPC3925-Cross-Site-Request-Forgery.htmlhttp://www.exploit-db.com/exploits/30362/http://www.nerdbox.it/cisco-epc3925-csrf-vulnerability/http://www.securityfocus.com/bid/64341http://osvdb.org/101097http://packetstormsecurity.com/files/124449/Cisco-EPC3925-Cross-Site-Request-Forgery.htmlhttp://www.exploit-db.com/exploits/30362/http://www.nerdbox.it/cisco-epc3925-csrf-vulnerability/http://www.securityfocus.com/bid/64341
2013-12-19
Published