Posted by RedTeam Pentesting GmbH on Oct 08

Advisory: Buffalo LinkStation Authentication Bypass

An authentication bypass vulnerability in the web interface of a Buffalo
LinkStation Duo Network Attached Storage (NAS) device allows
unauthenticated attackers to gain administrative privileges. This puts
the confidentiality and integrity of the stored data as well as the
integrity of the device configuration at high risk.

Details
=======

Product: Buffalo LinkStation Duo (LS-WXL), LS-CHL(v2),…