Vulnerabilities > CVE-2017-13717 - Credentials Management vulnerability in Starry S00111 Firmware

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

starry

CWE-255

NVD

Published: 2019-06-10

Updated: 2019-06-11

Summary

Starry Station (aka Starry Router) sets the Access-Control-Allow-Origin header to "*". This allows any hosted file on any domain to make calls to the device's webserver and brute force the credentials and pull any information that is stored on the device. In this case, a user's Wi-Fi credentials are stored in clear text on the device and can be pulled easily.

Vulnerable Configurations

Part	Description	Count
OS	Starry Starry S00111 Firmware -	1
Hardware	Starry Starry S00111 -	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

https://seclists.org/bugtraq/2019/Jun/8
https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Starry_sec_issues.pdf
http://packetstormsecurity.com/files/153240/Starry-Router-Camera-PIN-Brute-Force-CORS-Incorrect.html