Vulnerability Details CVE-2013-4656
Symlink Traversal vulnerability in ASUS RT-AC66U and RT-N56U due to misconfiguration in the SMB service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://www.ise.io/casestudies/exploiting-soho-routers/
- https://www.ise.io/soho_service_hacks/
- https://www.ise.io/wp-content/uploads/2017/07/soho_techreport.pdf
- https://www.ise.io/casestudies/exploiting-soho-routers/
- https://www.ise.io/soho_service_hacks/
- https://www.ise.io/wp-content/uploads/2017/07/soho_techreport.pdf
Products affected by CVE-2013-4656
-
cpe:2.3:h:asus:rt-ac66u:-
-
cpe:2.3:h:asus:rt-n56u:-
-
cpe:2.3:o:asus:rt-ac66u_firmware:-
-
cpe:2.3:o:asus:rt-n56u_firmware:-