Sign-up

ID

VAR-201402-0091


CVE

CVE-2013-3365


TITLE

TRENDnet TEW-812DRU Arbitrary command execution vulnerability in router

Trust: 0.8

sources: JVNDB: JVNDB-2013-005989

DESCRIPTION

TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to internet/ipv6.asp; (2) remote port to adm/management.asp; (3) pptp username, (4) pptp password, (5) ip, (6) gateway, (7) l2tp username, or (8) l2tp password to internet/wan.asp; (9) NtpDstStart, (10) NtpDstEnd, or (11) NtpDstOffset to adm/time.asp; or (12) device url to adm/management.asp. NOTE: vectors 9, 10, and 11 can be exploited by unauthenticated remote attackers by leveraging CVE-2013-3098. The Trendnet TEW-812DRU is a dual-band Gigabit router device. Trendnet TEW-812DRU multiple scripts incorrectly filter user-submitted input, allowing remote attackers to exploit malicious exploits to submit malicious requests to inject OS commands and execute them with WEB privileges. Trendnet TEW-812DRU is prone to multiple command-injection vulnerabilities. Exploiting these issues could allow an attacker to execute arbitrary commands in the context of the affected devices. There is a security vulnerability in TRENDnet TEW-812DRU router, the vulnerability is caused by the program not sufficiently filtering the 'NtpDstEnd' and '\'\'NtpDstOffset' fields in the setNTP.cgi script

Trust: 2.52

sources: NVD: CVE-2013-3365 // JVNDB: JVNDB-2013-005989 // CNVD: CNVD-2013-11064 // BID: 61492 // VULHUB: VHN-63367

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

category:['network device']sub_category:router

Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2013-11064

AFFECTED PRODUCTS

vendor:trendnetmodel:tew-812druscope:eqversion: -

Trust: 1.6

vendor:trendnetmodel:tew-812druscope: - version: -

Trust: 1.4

vendor:trendnetmodel:tew-812druscope:eqversion:0

Trust: 0.3

sources: CNVD: CNVD-2013-11064 // BID: 61492 // JVNDB: JVNDB-2013-005989 // CNNVD: CNNVD-201307-630 // NVD: CVE-2013-3365

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-3365
value: HIGH

Trust: 1.0

NVD: CVE-2013-3365
value: HIGH

Trust: 0.8

CNVD: CNVD-2013-11064
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201307-630
value: HIGH

Trust: 0.6

VULHUB: VHN-63367
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2013-3365
severity: HIGH
baseScore: 8.5
vectorString: AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2013-11064
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-63367
severity: HIGH
baseScore: 8.5
vectorString: AV:N/AC:M/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 6.8
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2013-11064 // VULHUB: VHN-63367 // JVNDB: JVNDB-2013-005989 // CNNVD: CNNVD-201307-630 // NVD: CVE-2013-3365

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.9

sources: VULHUB: VHN-63367 // JVNDB: JVNDB-2013-005989 // NVD: CVE-2013-3365

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201307-630

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201307-630

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-005989

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-63367

PATCH
title:TEW-812DRUurl:http://www.trendnet.com/products/proddetail.asp?prod=105_TEW-812DRU
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2013-005989

EXTERNAL IDS
db:NVDid:CVE-2013-3365
Trust: 3.5
db:BIDid:61492
Trust: 1.6
db:JVNDBid:JVNDB-2013-005989
Trust: 0.8
db:EXPLOIT-DBid:27177
Trust: 0.7
db:CNNVDid:CNNVD-201307-630
Trust: 0.7
db:CNVDid:CNVD-2013-11064
Trust: 0.6
db:OTHERid:NONE
Trust: 0.1
db:VULHUBid:VHN-63367
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2013-11064 // 
            
            
            
            VULHUB: VHN-63367 // 
            
            
            
            BID: 61492 // 
            
            
            
            JVNDB: JVNDB-2013-005989 // 
            
            
            
            CNNVD: CNNVD-201307-630 // 
            
            
            
            NVD: CVE-2013-3365

REFERENCES
url:http://infosec42.blogspot.com/2013/07/exploit-trendnet-tew-812dru-csrfcommand.html
Trust: 1.7
url:http://securityevaluators.com/content/case-studies/routers/vulnerability_catalog.pdf
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-3365
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-3365
Trust: 0.8
url:http://securityevaluators.com/knowledge/case_studies/routers/vulnerability_catalog.pdf
Trust: 0.8
url:http://www.exploit-db.com/exploits/27177/
Trust: 0.6
url:http://www.securityfocus.com/bid/61492
Trust: 0.6
url:http://www.plccenter.com/buy/trendnet/tew812dru?source=adwords_part&gclid=ciot5-3z1lgcfqnyqgodcx4avw
Trust: 0.3
url:https://ieeexplore.ieee.org/abstract/document/10769424
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2013-11064 // 
            
            
            
            VULHUB: VHN-63367 // 
            
            
            
            BID: 61492 // 
            
            
            
            JVNDB: JVNDB-2013-005989 // 
            
            
            
            CNNVD: CNNVD-201307-630 // 
            
            
            
            NVD: CVE-2013-3365

CREDITS
Jacob Holcomb
Trust: 0.9
sources:
            
            
            BID: 61492 // 
            
            
            
            CNNVD: CNNVD-201307-630

SOURCES
db:OTHERid: - 
db:CNVDid:CNVD-2013-11064
db:VULHUBid:VHN-63367
db:BIDid:61492
db:JVNDBid:JVNDB-2013-005989
db:CNNVDid:CNNVD-201307-630
db:NVDid:CVE-2013-3365

LAST UPDATE DATE
2025-01-30T20:44:00.623000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-11064date:2013-07-31T00:00:00
db:VULHUBid:VHN-63367date:2014-02-05T00:00:00
db:BIDid:61492date:2013-07-28T00:00:00
db:JVNDBid:JVNDB-2013-005989date:2014-02-06T00:00:00
db:CNNVDid:CNNVD-201307-630date:2014-02-12T00:00:00
db:NVDid:CVE-2013-3365date:2014-02-05T14:26:40.190

SOURCES RELEASE DATE
db:CNVDid:CNVD-2013-11064date:2013-07-31T00:00:00
db:VULHUBid:VHN-63367date:2014-02-04T00:00:00
db:BIDid:61492date:2013-07-28T00:00:00
db:JVNDBid:JVNDB-2013-005989date:2014-02-06T00:00:00
db:CNNVDid:CNNVD-201307-630date:2013-07-28T00:00:00
db:NVDid:CVE-2013-3365date:2014-02-04T21:55:05.200