1 results (0.001 seconds)
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2013-5703
https://notcve.org/view.php?id=CVE-2013-5703
The DrayTek Vigor 2700 router 2.8.3 allows remote attackers to execute arbitrary JavaScript code, and modify settings or the DNS cache, via a crafted SSID value that is not properly handled during insertion into the sWlessSurvey value in variables.js. El router DayTek Vigor 2700 v2.8.3 permite a atacantes remotos ejecutar código JavaScript arbitrario y modificar configuraciones de la cache DNS, a través de un valor SSID que no es manejado correctamente durante la inserción en el valor de sWlessSurvey en variables.js. • http://www.kb.cert.org/vuls/id/101462 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •