Overview
NetCommWireless NB604N ADSL2+ Wireless N300 Modem Router contains a stored cross-site scripting (XSS) vulnerability.
Description
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') NetCommWireless NB604N ADSL2+ Wireless N300 Modem Routers running software version GAN5.CZ56T-B-NC.AU-R4B010.EN contain a stored cross-site scripting (XSS) vulnerability. A remote attacker can perform a stored cross-site scripting (XSS) attack against an authenticated user through the web interface by manipulating single quotes in the WPA key variable (wlWpaPsk). The Wireless -> Security page (wlsecurity.html) contains an unsanitized parameter wlWpaPsk which, when submitted, is stored as the Javascript variable wpaPskKey. |
Impact
A remote attacker can perform a stored cross-site scripting (XSS) attack against an authenticated user through the web interface allowing them to run scripts with the permission of the authenticated user. |
Solution
Apply an Update |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 3.5 | AV:N/AC:M/Au:S/C:P/I:N/A:N |
| Temporal | 3.1 | E:POC/RL:U/RC:ND |
| Environmental | 2.3 | CDP:ND/TD:M/CR:ND/IR:ND/AR:ND |
References
Acknowledgements
Thanks to Katie Duczmal for reporting this vulnerability.
This document was written by Chris King.
Other Information
| CVE IDs: | CVE-2014-4871 |
| Date Public: | 2014-10-06 |
| Date First Published: | 2014-10-06 |
| Date Last Updated: | 2014-10-06 17:18 UTC |
| Document Revision: | 8 |