CVE-2014-3306

Published: 18/07/2014 Updated: 12/01/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The web server on Cisco DPC3010, DPC3212, DPC3825, DPC3925, DPQ3925, EPC3010, EPC3212, EPC3825, and EPC3925 Wireless Residential Gateway products allows remote malicious users to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCup40808.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco epc3010 -
cisco dpc3925 -
cisco epc3925 -
cisco dpc3010 -
cisco dpc3825 -
cisco epc3212 -
cisco epc3825 -
cisco dpc3212 -
cisco dpq3925 -

A vulnerability in the web server used in multiple Cisco Wireless Residential Gateway products could allow an unauthenticated, remote attacker to exploit a buffer overflow and cause arbitrary code execution The vulnerability is due to incorrect input validation for HTTP requests An attacker could exploit this vulnerability by sending a crafted H ...

CWE-20 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ciscosa-20140716-cm http://www.securitytracker.com/id/1030599 http://www.securitytracker.com/id/1030598 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/ciscosa-20140716-cm

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3306

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect