Vulnerabilities > Airties

DATE CVE VULNERABILITY TITLE RISK
2015-06-19 CVE-2015-2797 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Airties AIR Firmware
Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.
network
low complexity
airties CWE-119
critical
10.0
2015-01-13 CVE-2014-100032 Cross-site Scripting vulnerability in Airties AIR 6372
Cross-site scripting (XSS) vulnerability in top.html in the Airties Air 6372 modem allows remote attackers to inject arbitrary web script or HTML via the productboardtype parameter.
network
airties CWE-79
4.3
2012-01-20 CVE-2012-0902 Denial of Service vulnerability in Airties AIR 4450 1.1.2.18
AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service (reboot) via a direct request to cgi-bin/loader.
network
low complexity
airties
5.0