Vulnerabilities > CVE-2007-4387 - Cross-Site Request Forgery vulnerability in 1701Hg Router

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

2wire

metasploit

NVD

Published: 2007-08-17

Updated: 2018-10-15

Summary

Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG and 2071 Gateway routers, with 3.17.5 and 5.29.51 software, allows remote attackers to perform certain configuration changes as administrators.

Vulnerable Configurations

Part	Description	Count
Hardware	2Wire 2Wire 1701Hg Router 3.17.5 2Wire 1701Hg Router 5.29.51 2Wire 2071 Router 3.17.5 2Wire 2071 Router 5.29.51	4

Metasploit

description	This module will reset the admin password on a 2Wire wireless router. This is done by using the /xslt page where authentication is not required, thus allowing configuration changes (such as resetting the password) as administrators.
id	MSF:AUXILIARY/ADMIN/2WIRE/XSLT_PASSWORD_RESET
last seen	2020-01-16
modified	2018-09-15
published	2011-07-07
references	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4387 https://seclists.org/bugtraq/2007/Aug/225
reporter	Rapid7
source	https://github.com/rapid7/metasploit-framework/blob/master//modules/auxiliary/admin/2wire/xslt_password_reset.rb
title	2Wire Cross-Site Request Forgery Password Reset Vulnerability

Summary

Vulnerable Configurations

Metasploit

References