Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:ASUS-WRT-MUL
Severity	Critical
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	AsusWRT Multiple Vulnerabilities
Release Date	2019/12/03
Update Number	3230
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: AsusWRT Multiple Vulnerabilities

This signature detects attempts to exploit a known vulnerability against AsusWRT. A successful attack can lead to multiple vulnerabilities.

Extended Description

An issue was discovered in AsusWRT before 3.0.0.4.384_10007. In the handle_request function in router/httpd/httpd.c, processing of POST requests continues even if authentication fails.

Affected Products

Asus asuswrt 3.0.0.4.378
Asus asuswrt 3.0.0.4.380.7743
Asus asuswrt 3.0.0.4.384.20308

References

CVE: CVE-2018-5999
CVE: CVE-2018-6000

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: AsusWRT Multiple Vulnerabilities

Extended Description

Affected Products

References