CVE-2009-4196

Huawei MT882 Modem/Router - Multiple Vulnerabilities

Severity Score

4.3

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple cross-site scripting (XSS) vulnerabilities in multiple scripts in Forms/ in Huawei MT882 V100R002B020 ARG-T running firmware 3.7.9.98 allow remote attackers to inject arbitrary web script or HTML via the (1) BackButton parameter to error_1; (2) wzConnFlag parameter to fresh_pppoe_1; (3) diag_pppindex_argen and (4) DiagStartFlag parameters to rpDiag_argen_1; (5) wzdmz_active and (6) wzdmzHostIP parameters to rpNATdmz_argen_1; (7) wzVIRTUALSVR_endPort, (8) wzVIRTUALSVR_endPortLocal, (9) wzVIRTUALSVR_IndexFlag, (10) wzVIRTUALSVR_localIP, (11) wzVIRTUALSVR_startPort, and (12) wzVIRTUALSVR_startPortLocal parameters to rpNATvirsvr_argen_1; (13) Connect_DialFlag, (14) Connect_DialHidden, and (15) Connect_Flag parameters to rpStatus_argen_1; (16) Telephone_select, and (17) wzFirstFlag parameters to rpwizard_1; and (18) wzConnectFlag parameter to rpwizPppoe_1.

Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en múltiples scripts de la carpeta Forms/ de MT882 V100R002B020 ARG-T ejecutando el firmware v3.7.9.98 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección mediante (1) el parámetro "BackButton" de error_1; (2) el parámetro "wzConnFlag" de fresh_pppoe_1; (3) los parámetros "diag_pppindex_argen" y (4) "DiagStartFlag" de rpDiag_argen_1; (5)) los parámetros "wzdmz_active" y (6) "wzdmzHostIP" de rpNATdmz_argen_1; (7) los parámetros "wzVIRTUALSVR_endPort", (8) "wzVIRTUALSVR_endPortLocal", (9) "wzVIRTUALSVR_IndexFlag", (10) "wzVIRTUALSVR_localIP", (11) "wzVIRTUALSVR_startPort", y (12) "wzVIRTUALSVR_startPortLocal" de rpNATvirsvr_argen_1; (13) los parámetros "Connect_DialFlag", (14) "Connect_DialHidden", y (15) "Connect_Flag" de rpStatus_argen_1; (16) los parámetros "Telephone_select", y (17) "wzFirstFlag" de rpwizard_1; and (18) el parámetro "wzConnectFlag" de rpwizPppoe_1.

*Credits: N/A

CVSS Scores

NISTv2 4.3

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2009-12-03 CVE Reserved
2009-12-03 First Exploit
2009-12-04 CVE Published
2023-03-07 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CAPEC

References (4)

URL	Tag	Source
http://www.securityfocus.com/bid/37194	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/54526	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/10276	2009-12-03
http://www.exploit-db.com/exploits/10276	2024-08-07

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Huawei Search vendor "Huawei"		Mt882 V100t002b020 Arg-t Search vendor "Huawei" for product "Mt882 V100t002b020 Arg-t"				firmware_3.7.9.98 Search vendor "Huawei" for product "Mt882 V100t002b020 Arg-t" and version "firmware_3.7.9.98"		-		Affected