Full Disclosure

NSE scripts for XSS and session hijacking in AsusWRT

April 9, 2017 007admin Leave a comment

Posted by Rewanth Cool on Apr 09

ASUSWRT is a wireless router operating system that powers many routers
produced by ASUS.

NSE scripts for CVE-2017-6547 ( XSS ) and CVE-2017-6549 ( Session stealing
) are developed for AsusWRT.

The script comes under “vuln”, “intrusive”, “exploit”, “dos” categories.
Failed attempts lead to dos attack.

There is a PR on #779 <https://github.com/nmap/nmap/pull/779> regarding the
both the latest…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information