CVE-2013-7293

Currently unrated

Key Information:

Vendor: Asus
Status: Wl-330nul
Vendor: CVE Published:; 15 January 2014

Summary

The ASUS WL-330NUL router has a configuration process that relies on accessing the 192.168.1.1 IP address, but the documentation advises users to instead access a DNS hostname that does not always resolve to 192.168.1.1, which makes it easier for remote attackers to hijack the configuration traffic by controlling the server associated with that hostname.

References

http://www.securityfocus.com/bid/64799

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/191750

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Jan 15, 2014
Vulnerability Reserved
Jan 14, 2014