The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-07-05T16:00:00
Updated: 2018-10-10T18:57:01
Reserved: 2009-07-05T00:00:00
Link: CVE-2009-2323
JSON object: View
NVD Information
Status : Modified
Published: 2009-07-05T16:30:00.640
Modified: 2018-10-10T19:39:37.117
Link: CVE-2009-2323
JSON object: View
Redhat Information
No data.
CWE