AllegroSoft RomPager 4.34 and earlier, as used in Huawei Home Gateway products and other vendors and products, allows remote attackers to gain privileges via a crafted cookie that triggers memory corruption, aka the "Misfortune Cookie" vulnerability.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CAllegrosoft Rompager
APPAllegrosoft≤ 4.07
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje
Powiązane podatności
CVE-2014-9223HIGH10.0ten sam produkt
Multiple buffer overflows in AllegroSoft RomPager, as used in Huawei Home Gateway products and other vendors a...
CVE-2024-0522MEDIUM4.3ten sam produkt
A vulnerability was found in Allegro RomPager 4.01. It has been classified as problematic. Affected is an unkn...
CVE-2013-6786MEDIUM4.3ten sam produkt
Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huaw...