CVE-2014-9222
First published: Wed Dec 24 2014(Updated: )
AllegroSoft RomPager 4.34 and earlier, as used in Huawei Home Gateway products and other vendors and products, allows remote attackers to gain privileges via a crafted cookie that triggers memory corruption, aka the "Misfortune Cookie" vulnerability.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| AllegroSoft RomPager | <=4.07 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://mis.fortunecook.ie/
- http://seclists.org/fulldisclosure/2014/Dec/87
- http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-407666.htm
- http://www.kb.cert.org/vuls/id/561444
- http://www.securityfocus.com/bid/105173
- https://www.allegrosoft.com/allegro-software-urges-manufacturers-to-maintain-firmware-for-highest-level-of-embedded-device-security/news-press.html
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/allegrosoft
- canonical/allegrosoft rompager
- version/allegrosoft rompager/4.07