CVE

CVE-2017-6549 (rt-ac53_firmware)

admin

CVE-2017-6549 (rt-ac53_firmware)

Session hijack vulnerability in httpd in ASUS ASUSWRT on RT-AC53 3.0.0.4.380.6038 devices allows remote attackers to steal any active admin session by sending cgi_logout and asusrouter-Windows-IFTTT-1.0 in certain HTTP headers.

Source: CVE-2017-6549 (rt-ac53_firmware)

Exit mobile version