U.S.Robotics.Setup.Ddns.EXE.HTML.Injection
Description
This indicates a possible attack against an HTML Injection vulnerability in the U.S.Robotics USR5463.
The vulnerable firmware fails to sanitize user supplied data. A successful attack may allow the attacker to steal cookie based authentication credentials and to control how the site is rendered.
Affected Products
U.S.Robotics USR5463 0.06
Impact
Information Disclosure: Remote attackers can gain sensitive information from
vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-12-02 | 16.972 |