Vulnerabilities > CVE-2013-5037 - Credentials Management vulnerability in HOT Hotbox Router and Hotbox Router Firmware
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
The HOT HOTBOX router with software 2.1.11 has a default WPS PIN of 12345670, which makes it easier for remote attackers to obtain the WPA or WPA2 pre-shared key via EAP messages.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 1 | |
| Hardware | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities. CVE-2013-5037,CVE-2013-5038,CVE-2013-5039,CVE-2013-5218,CVE-2013-5219,CVE-2013-5220. Webapps exploit fo... |
| id | EDB-ID:29518 |
| last seen | 2016-02-03 |
| modified | 2013-11-08 |
| published | 2013-11-08 |
| reporter | Oz Elisyan |
| source | https://www.exploit-db.com/download/29518/ |
| title | Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/123901/hotbox-dosxsrftraversal.txt |
| id | PACKETSTORM:123901 |
| last seen | 2016-12-05 |
| published | 2013-11-04 |
| reporter | Oz Elisyan |
| source | https://packetstormsecurity.com/files/123901/HOTBOX-2.1.11-CSRF-Traversal-Denial-Of-Service.html |
| title | HOTBOX 2.1.11 CSRF / Traversal / Denial Of Service |
Seebug
| bulletinFamily | exploit |
| description | No description provided by source. |
| id | SSV:83016 |
| last seen | 2017-11-19 |
| modified | 2014-07-01 |
| published | 2014-07-01 |
| reporter | Root |
| source | https://www.seebug.org/vuldb/ssvid-83016 |
| title | Sagemcom F@st 3184 2.1.11 - Multiple Vulnerabilities |