Vulnerabilities > Asus
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-01-15 | CVE-2013-7293 | Improper Access Control vulnerability in Asus Wl-330Nul The ASUS WL-330NUL router has a configuration process that relies on accessing the 192.168.1.1 IP address, but the documentation advises users to instead access a DNS hostname that does not always resolve to 192.168.1.1, which makes it easier for remote attackers to hijack the configuration traffic by controlling the server associated with that hostname. | 5.0 |
| 2013-10-05 | CVE-2013-3610 | Improper Authentication vulnerability in Asus Rt-N10E and Rt-N10E Firmware qis/QIS_finish.htm on the ASUS RT-N10E router with firmware before 2.0.0.25 does not require authentication, which allows remote attackers to discover the administrator password via a direct request. | 6.1 |
| 2013-07-26 | CVE-2013-4937 | Unspecified vulnerability in Asus products Multiple unspecified vulnerabilities in the AiCloud feature on the ASUS RT-AC66U, RT-N66U, RT-N65U, RT-N14U, RT-N16, RT-N56U, and DSL-N55U with firmware before 3.0.4.372 have unknown impact and attack vectors. | 10.0 |
| 2012-09-15 | CVE-2012-4924 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Asus Ipswcom Activex Component and Net4Switch Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Alert method. | 9.3 |
| 2011-11-21 | CVE-2011-4497 | Information Exposure vulnerability in Asus Rt-N56U and Rt-N56U Firmware QIS_wizard.htm on the ASUS RT-N56U router with firmware before 1.0.1.4o allows remote attackers to obtain the administrator password via a flag=detect request. | 3.3 |
| 2009-09-08 | CVE-2009-3093 | Remote Security vulnerability in Asus Wl-500W Unspecified vulnerability on the ASUS WL-500W wireless router has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. | 10.0 |
| 2009-09-08 | CVE-2009-3092 | Remote vulnerability in ASUS WL-500W Wireless Router Buffer overflow on the ASUS WL-500W wireless router has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. | 10.0 |
| 2009-09-08 | CVE-2009-3091 | Remote Security vulnerability in Asus Wl-330Ge Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. | 10.0 |
| 2009-02-20 | CVE-2009-0656 | Credentials Management vulnerability in Asus Smartlogon 1.0.0005 Asus SmartLogon 1.0.0005 allows physically proximate attackers to bypass "security functions" by presenting an image with a modified viewpoint that matches the posture of a stored image of the authorized notebook user. | 6.9 |
| 2008-03-25 | CVE-2008-1491 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Asus Remote Console 2.0.0.19/2.0.0.24 Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka ARC or ASMB3) 2.0.0.19 and 2.0.0.24 allows remote attackers to execute arbitrary code via a long string to TCP port 623. | 10.0 |