Vulnerability-Lookup

CNVD-2016-00149

Vulnerability from cnvd - Published: 2016-01-12

Title

ReadyNet WRT300N-DD devices with firmware欺骗漏洞

Description

ReadyNet WRT300N-DD devices with firmware是新西兰ReadyNet公司的一款无线路由器产品。 ReadyNet WRT300N-DD devices with firmware 1.0.26存在欺骗漏洞。由于设备使用相同的源端口做DNS查询，远程攻击者选择此号码为目的端口进行欺骗响应。

Severity

中

Formal description

目前没有详细的解决方案，请到厂商的主页下载： http://www.readynetsolutions.com

Reference

https://www.kb.cert.org/vuls/id/167992

Impacted products

Name
ReadyNet WRT300N-DD devices with firmware 1.0.26

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-7282"
    }
  },
  "description": "ReadyNet WRT300N-DD devices with firmware\u662f\u65b0\u897f\u5170ReadyNet\u516c\u53f8\u7684\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u4ea7\u54c1\u3002\r\n\r\nReadyNet WRT300N-DD devices with firmware 1.0.26\u5b58\u5728\u6b3a\u9a97\u6f0f\u6d1e\u3002\u7531\u4e8e\u8bbe\u5907\u4f7f\u7528\u76f8\u540c\u7684\u6e90\u7aef\u53e3\u505aDNS\u67e5\u8be2\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u9009\u62e9\u6b64\u53f7\u7801\u4e3a\u76ee\u7684\u7aef\u53e3\u8fdb\u884c\u6b3a\u9a97\u54cd\u5e94\u3002",
  "discovererName": "Joel Land of the CERT/CC",
  "formalWay": "\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u89e3\u51b3\u65b9\u6848\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://www.readynetsolutions.com",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-00149",
  "openTime": "2016-01-12",
  "products": {
    "product": "ReadyNet WRT300N-DD devices with firmware 1.0.26"
  },
  "referenceLink": "https://www.kb.cert.org/vuls/id/167992",
  "serverity": "\u4e2d",
  "submitTime": "2016-01-07",
  "title": "ReadyNet WRT300N-DD devices with firmware\u6b3a\u9a97\u6f0f\u6d1e"
}

CVE-2015-7282 (GCVE-0-2015-7282)

Vulnerability from cvelistv5 – Published: 2015-12-31 02:00 – Updated: 2024-08-06 07:43

Summary

ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.

Severity ?

No CVSS data available.

CWE

Assigner

certcc

References

URL

Tags

	http://www.securityfocus.com/bid/78814	vdb-entryx_refsource_BID
	https://www.kb.cert.org/vuls/id/167992	third-party-advisoryx_refsource_CERT-VN

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T07:43:46.115Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "78814",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/78814"
          },
          {
            "name": "VU#167992",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "https://www.kb.cert.org/vuls/id/167992"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-12-10T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-25T19:57:01.000Z",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "78814",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/78814"
        },
        {
          "name": "VU#167992",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "https://www.kb.cert.org/vuls/id/167992"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2015-7282",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "78814",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/78814"
            },
            {
              "name": "VU#167992",
              "refsource": "CERT-VN",
              "url": "https://www.kb.cert.org/vuls/id/167992"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2015-7282",
    "datePublished": "2015-12-31T02:00:00.000Z",
    "dateReserved": "2015-09-18T00:00:00.000Z",
    "dateUpdated": "2024-08-06T07:43:46.115Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2016-00149

CVE-2015-7282 (GCVE-0-2015-7282)

Tags

Sightings

Nomenclature