Vulnerabilities > CVE-2013-2682 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Cisco Linksys E4200 Firmware 1.0.05

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
cisco
CWE-1021
exploit available

Summary

Cisco Linksys E4200 1.0.05 Build 7 devices contain a Clickjacking Vulnerability which allows remote attackers to obtain sensitive information.

Vulnerable Configurations

Part Description Count
OS
Cisco
1
Hardware
Cisco
1

Exploit-Db

descriptionCisco Linksys E4200 Firmware - Multiple Vulnerabilities. CVE-2013-2678,CVE-2013-2679,CVE-2013-2680,CVE-2013-2681,CVE-2013-2682,CVE-2013-2683,CVE-2013-2684. W...
fileexploits/hardware/webapps/25292.txt
idEDB-ID:25292
last seen2016-02-03
modified2013-05-07
platformhardware
port
published2013-05-07
reportersqlhacker
sourcehttps://www.exploit-db.com/download/25292/
titleCisco Linksys E4200 Firmware - Multiple Vulnerabilities
typewebapps

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/121551/ciscolinksyse4200-xsslfi.txt
idPACKETSTORM:121551
last seen2016-12-05
published2013-05-07
reportersqlhacker
sourcehttps://packetstormsecurity.com/files/121551/Cisco-Linksys-E4200-Cross-Site-Scripting-Local-File-Inclusion.html
titleCisco Linksys E4200 Cross Site Scripting / Local File Inclusion