Cross-Site Scripting Vulnerability in Edimax AR-6004 ADSL Router
CVE-2004-1790

Currently unrated

Key Information:

Vendor: Edimax
Status: Full Rate Adsl Router
Vendor: CVE Published:; 31 December 2004

Summary

A vulnerability exists in the web management interface of the Edimax AR-6004 ADSL Router, allowing remote attackers to exploit cross-site scripting (XSS). By crafting a malicious URL, attackers can inject arbitrary web scripts or HTML into the interface, potentially leading to unauthorized actions on behalf of users accessing the router's management page. This type of vulnerability can be particularly dangerous as it might allow attackers to steal sensitive information or compromise security settings.

References

http://www.securityfocus.com/archive/1/349089

mailing-listx_refsource_BUGTRAQ

http://www.osvdb.org/3435

vdb-entryx_refsource_OSVDB

http://securitytracker.com/id?1008643

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability Reserved
May 4, 2005
Vulnerability published
Dec 31, 2004