Published: 17/09/2007 Updated: 15/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The Intersil isl3893 extensions for Boa 0.93.15, as used on the FreeLan RO80211G-AP and other devices, do not prevent stack writes from entering memory locations used for string constants, which allows remote malicious users to change the admin password stored in memory via a long username in an HTTP Basic Authentication request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
boa boa webserver 0.93.15

source: wwwsecurityfocuscom/bid/25676/info Boa is prone to an authentication-bypass vulnerability because the application fails to ensure that passwords are not overwritten by specially crafted HTTP Requests An attacker can exploit this issue to gain unauthorized access to the affected application This may lead to other attacks This ...

/* * Boa HTTP Basic Authentication Bypass * Vuln: Boa/09315 (with Intersil Extensions) * * Original Advisory: * wwwsecurityfocuscom/archive/1/479434 * wwwikkisoftcom/stuff/SN-2007-02txt * * Luca "ikki" Carettoni * wwwikkisoftcom */ ---- #!/usr/bin/env python import urllib2 SERVER_IP_ADDRESS = '192168 ...

CWE-20 http://www.securenetwork.it/ricerca/advisory/download/SN-2007-02.txt http://www.securityfocus.com/bid/25676 http://securityreason.com/securityalert/3151 http://www.gnucitizen.org/projects/router-hacking-challenge/http://www.ikkisoft.com/stuff/SN-2007-02.txt https://www.exploit-db.com/exploits/4542 http://www.securityfocus.com/archive/1/489009/100/0/threaded http://www.securityfocus.com/archive/1/479434/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/30584/

CVE-2007-4915

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect