CVE Vulnerability

CVE-2008-1262

The administration panel on the Airspan WiMax ProST 4.1 antenna with 6.5.38.0 software does not verify authentication credentials, which allows remote attackers to (1) upload malformed firmware or (2) bind the antenna to a different WiMAX base station via unspecified requests to forms under process_adv/.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.gnucitizen.org/projects/router-hacking-challenge/ Exploit
http://www.kb.cert.org/vuls/id/248372 US Government Resource
http://www.securityfocus.com/bid/28122 Exploit
http://secunia.com/advisories/29265 Vendor Advisory
http://airspan4wimax.googlepages.com/ Exploit
http://www.0x000000.com/?i=524
http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820
http://www.vupen.com/english/advisories/2008/0802/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41052
http://www.securityfocus.com/archive/1/489009/100/0/threaded
Configurations

Configuration 1

cpe:2.3:h:airspan:wimax_prost:4.1:*:6.5.38.0:*:*:*:*:*
Information

Published : 2008-03-10 05:44

Updated : 2018-10-11 08:31

NVD link : CVE-2008-1262

Mitre link : CVE-2008-1262

Products Affected
No products.
CWE
CWE-287