CVE-2014-9284CVE-2014-9284

Affected configuration(s):

cpe:/h:buffalotech:bhr-4grv2_firmware:1.04
cpe:/h:buffalotech:wex-300_firmware:1.60
cpe:/h:buffalotech:whr-1166dhp_firmware:1.60
cpe:/h:buffalotech:whr-300hp2_firmware:1.60
cpe:/h:buffalotech:whr-600d_firmware:1.60
cpe:/h:buffalotech:wmr-300_firmware:1.60
cpe:/h:buffalotech:wsr-600dhp_firmware:1.60

Date published: 2015-06-08T20:59:00.073-04:00

Date last modified: 2015-06-16T11:59:44.057-04:00

CVSS Score: 7.7

Principal attack vector: ADJACENT_NETWORK

Complexity:  LOW

Reference URL: http://jvn.jp/en/jp/JVN50447904/index.html

Summary: The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier, WHR-300HP2 1.60 and earlier, WMR-300 1.60 and earlier, WEX-300 1.60 and earlier, and BHR-4GRV2 1.04 and earlier routers allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.