Posted by MustLive on Oct 08

Hello list!

After all my advisories about vulnerabilities in Callisto 821+
(http://seclists.org/fulldisclosure/2011/Aug/1) and recent advisory about
Callisto 821+R3, here is new one. Because vendor ignored in 2011 all my
letters and subsequent my public disclosure of vulnerabilities and new
devices are vulnerable as well, so I disclosed vulnerabilities in Callisto
821+R3 ADSL Router.

These are Cross-Site Request Forgery vulnerabilities….