Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:ASUS-RT-G32-CSRF
Severity	Major
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Asus RT-G32 CVE-2015-2676 Cross Site Request Forgery
Release Date	2019/02/28
Update Number	3146
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Asus RT-G32 CVE-2015-2676 Cross Site Request Forgery

This signature detects attempts to exploit a known vulnerability against Asus RT-G32 Routers. A successful attack can lead to Cross Site Request Forgery.

Extended Description

Cross-site request forgery (CSRF) vulnerability in the ASUS RT-G32 routers with firmware 2.0.2.6 and 2.0.3.2 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via a request to start_apply.htm.

Affected Products

Asus rt-g32_firmware 2.0.2.6
Asus rt-g32_firmware 2.0.3.2

References

CVE: CVE-2015-2676

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Asus RT-G32 CVE-2015-2676 Cross Site Request Forgery

Extended Description

Affected Products

References