Cross-site request forgery (CSRF) vulnerability in /ctrl in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to hijack the authentication of admins for requests that execute arbitrary programs.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www.kb.cert.org/vuls/id/796883 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-12-15T02:00:00Z
Updated: 2024-09-17T00:26:57.558Z
Reserved: 2011-12-14T00:00:00Z
Link: CVE-2011-4837
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2011-12-15T03:57:35.230
Modified: 2011-12-15T05:00:00.000
Link: CVE-2011-4837
Redhat
No data.