Vulnerability CVE-2013-6343


Published: 2014-01-22   Modified: 2016-12-30

Description:
Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_flag parameter to APP_Installation.asp.

See advisories in our WLB2 database:
Topic
Author
Date
High
ASUS RT-N56U Remote Root Exploit
Jacob Holcomb/Gi...
21.01.2014

Vendor: ASUS
Product: Rt-ac66u firmware 
Version: 3.0.0.4..374_979;
Product: Rt-n56u firmware 
Version: 3.0.0.4..374_979;
Product: Tm-ac1900 firmware 
Version: 3.0.0.4..374_979;
Product: Rt-ac66u 
Product: Rt-n56u 

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://infosec42.blogspot.com/2014/01/exploit-asus-rt-n56u-remote-root-shell.html
http://www.exploit-db.com/exploits/31033
http://www.securityfocus.com/bid/65046
https://support.t-mobile.com/docs/DOC-21994

Related CVE
CVE-2017-12593
ASUS DSL-N10S V2.1.16_APAC devices allow CSRF.
CVE-2017-12592
ASUS DSL-N10S V2.1.16_APAC devices have a privilege escalation vulnerability. A normal user can escalate its privilege and perform administrative actions. There is no mapping of users with their privileges.
CVE-2017-12591
ASUS DSL-N10S V2.1.16_APAC devices have reflected and stored cross site scripting, as demonstrated by the snmpSysName parameter.
CVE-2017-8877
ASUS RT-AC* and RT-N* devices with firmware through 3.0.0.4.380.7378 allow JSONP Information Disclosure such as the SSID.
CVE-2017-8878
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow remote authenticated users to discover the Wi-Fi password via WPS_info.xml.
CVE-2017-5892
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 allow JSONP Information Disclosure such as a network map.
CVE-2017-5891
ASUS RT-AC* and RT-N* devices with firmware before 3.0.0.4.380.7378 have Login Page CSRF and Save Settings CSRF.
CVE-2013-4659
Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU.

Copyright 2017, cxsecurity.com

 

Back to Top