← back
CVE-2007-4915

CVE-2007-4915

EPSS 67.6%
The Intersil isl3893 extensions for Boa 0.93.15, as used on the FreeLan RO80211G-AP and other devices, do not prevent stack writes from entering memory locations used for string constants, which allows remote attackers to change the admin password stored in memory via a long username in an HTTP Basic Authentication request.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/30584unverifiedcve_referencewww.exploit-db.com/exploits/4542unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securityreason.com/securityalert/3151https://www.exploit-db.com/exploits/4542http://www.gnucitizen.org/projects/router-hacking-challenge/http://www.ikkisoft.com/stuff/SN-2007-02.txthttp://www.securenetwork.it/ricerca/advisory/download/SN-2007-02.txthttp://www.securityfocus.com/archive/1/479434/100/0/threadedhttp://www.securityfocus.com/archive/1/489009/100/0/threadedhttp://www.securityfocus.com/bid/25676