CVE-2007-4387

Description

Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators.

Affected products

• 2wire / 1701hg_router3.17.5 – 3.17.5
• 2wire / 1701hg_router5.29.51 – 5.29.51
• 2wire / 2071_router3.17.5 – 3.17.5
• 2wire / 2071_router5.29.51 – 5.29.51

References

• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/36044
• MISChttp://securityreason.com/securityalert/3026
• MISChttp://www.securityfocus.com/archive/1/476595/100/0/threaded
• VENDOR_ADVISORYhttp://secunia.com/advisories/26496
• MISChttp://osvdb.org/37667