Vulnerabilities > CVE-2013-2675 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Brother Mfc-9970Cdw Firmware 1.10

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

brother

CWE-1021

NVD

Published: 2020-02-05

Updated: 2020-02-11

Summary

Brother MFC-9970CDW 1.10 devices with Firmware L contain a Frameable response (Clickjacking) vulnerability which could allow remote attackers to obtain sensitive information.

Vulnerable Configurations

Part	Description	Count
OS	Brother Brother MFC 9970Cdw Firmware 1.10	1
Hardware	Brother Brother MFC 9970Cdw -	1

Common Weakness Enumeration (CWE)

CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

Packetstorm

data source	https://packetstormsecurity.com/files/download/121553/brothermfc9970cdw-xss.txt
id	PACKETSTORM:121553
last seen	2016-12-05
published	2013-05-08
reporter	sqlhacker
source	https://packetstormsecurity.com/files/121553/Brother-MFC-9970CDW-Firmware-0D-Cross-Site-Scripting.html
title	Brother MFC-9970CDW Firmware 0D Cross Site Scripting

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Packetstorm

References