Comcast DOCSIS 3.0 Business Gateways Cross Site Request Forgery and Security Bypass Vulnerabilities

Comcast DOCSIS is prone to multiple cross-site request-forgery and security-bypass vulnerabilities in business gateways.

Exploiting these issues may allow a remote attacker to perform certain administrative actions, bypass certain security restrictions, gain unauthorized access to the affected device, or delete certain data. Other attacks are also possible.

Comcast DOCSIS 3.0 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus