M0n0wall Multiple Cross Site Request Forgery Vulnerabilities

Summary

m0n0wall is prone to multiple cross-site request-forgery vulnerabilities because it fails to properly validate POST requests.

Credit:

Details

Vulnerable Systems:
 * m0n0wall 1.33

Attackers can exploit these issues to perform certain administrative actions and gain unauthorized access to the affected application. Other attacks are also possible.

An attacker can exploit these issues by enticing an unsuspecting victim to follow a malicious URI.

The following exploit codes are available:
http://downloads.securityfocus.com/vulnerabilities/exploits/56844.html.txt

Disclosure Timeline:
Published: December 06 2012

Categories: News