CVE-2015-9550

An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to open the web management interface on the WAN interface.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:totolink:a850r-v1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:a850r-v1:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:totolink:f1-v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:f1-v2:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:totolink:f2-v1_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:f2-v1:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:totolink:n150rt-v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n150rt-v2:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:totolink:n151rt-v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n151rt-v2:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:totolink:n300rh-v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n300rh-v2:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:totolink:n300rh-v3_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n300rh-v3:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:totolink:n300rt-v2_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:totolink:n300rt-v2:-:*:*:*:*:*:*:*

Information

Published : 2020-11-24 13:15

Updated : 2020-12-04 09:45


NVD link : CVE-2015-9550

Mitre link : CVE-2015-9550


JSON object : View

CWE
CWE-668

Exposure of Resource to Wrong Sphere

Advertisement

dedicated server usa

Products Affected

totolink

  • a850r-v1
  • n300rt-v2
  • n151rt-v2_firmware
  • f2-v1_firmware
  • a850r-v1_firmware
  • f2-v1
  • n300rh-v3_firmware
  • f1-v2_firmware
  • n150rt-v2_firmware
  • n150rt-v2
  • n300rh-v2_firmware
  • n151rt-v2
  • n300rt-v2_firmware
  • f1-v2
  • n300rh-v3
  • n300rh-v2