CVE-2013-4937
https://notcve.org/view.php?id=CVE-2013-4937
Multiple unspecified vulnerabilities in the AiCloud feature on the ASUS RT-AC66U, RT-N66U, RT-N65U, RT-N14U, RT-N16, RT-N56U, and DSL-N55U with firmware before 3.0.4.372 have unknown impact and attack vectors. Múltiples vulnerabilidades no especificadas en la característica AiCloud de los ASUS RT-AC66U, RT-N66U, RT-N65U, RT-N14U, RT-N16, RT-N56U, y DSL-N55U con firmware anteriores a v3.0.4.372 tienen impacto y vectores de ataque desconocidos. • http://reviews.cnet.com/8301-3132_7-57594003-98 http://twitter.com/ASUSUSA/statuses/357612236392509440 •
CVE-2012-4924 – ASUS Net4Switch - 'ipswcom.dll' ActiveX Stack Buffer Overflow
https://notcve.org/view.php?id=CVE-2012-4924
Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Alert method. Desbordamiento de búfer en la función CxDbgPrint en el componente ActiveX ipswcom.dll v1.0.0.1 para ASUS Net4Switch 1.0.0020, permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) o posiblemente la ejecución de código de su elección a través de un parámetro largo sobre el método Alert. • https://www.exploit-db.com/exploits/18538 http://dsecrg.com/pages/vul/show.php?id=417 http://osvdb.org/79438 http://secunia.com/advisories/48125 http://www.exploit-db.com/exploits/18538 http://www.securityfocus.com/bid/52110 https://exchange.xforce.ibmcloud.com/vulnerabilities/73384 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2011-4497
https://notcve.org/view.php?id=CVE-2011-4497
QIS_wizard.htm on the ASUS RT-N56U router with firmware before 1.0.1.4o allows remote attackers to obtain the administrator password via a flag=detect request. QIS_wizard.htm en el router ASUS RT-N56U con firmware antes de v1.0.1.4o permite a atacantes remotodos obtener la contraseña del administrador a través de una petición flag=detect • http://www.kb.cert.org/vuls/id/200814 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2009-3092
https://notcve.org/view.php?id=CVE-2009-3092
Buffer overflow on the ASUS WL-500W wireless router has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Desbordamiento de búfer en el router wireless ASUS WL-500W tiene un impacto y vectores de ataque desconocidos, como se ha demostrado por cierto módulo en VulnDisco Pack Professional v8.11. NOTA: hasta el 3-3-2009, esta divulgación no tenía información para su puesta en práctica. • http://intevydis.com/vd-list.shtml http://secunia.com/advisories/36439 http://www.securityfocus.com/bid/36236 •
CVE-2009-3091
https://notcve.org/view.php?id=CVE-2009-3091
Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes. Vulnerabilidad no especificada en el ASUS WL-330gE, tiene impacto y vectores de ataque desconocidos, como se ha demostrado en cierto módulo de VulnDisco Pack Professional 8.11. NOTA: a fecha de 03/09/2009, este aviso no cuenta con más información. • http://intevydis.com/vd-list.shtml •