CVE-2012-1250

Published: Jun 4, 2012Modified: Apr 29, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Logitec LAN-W300N/R routers with firmware before 2.27 do not properly restrict login access, which allows remote attackers to obtain administrative privileges and modify settings via vectors related to PPPoE authentication.

Affected (1)

Products: Logitech: Lan W300n/ru2 Firmware

Logitech

1 product

Lan W300n/ru2 Firmware

Configuration A

1 vulnerable · 3 platform

Vulnerable Software	Affected Versions
Logitech Lan W300n/ru2 Firmware	Before 2.27

Running on/with	Platform Versions
Logitech Lan W300n/r	All versions
Logitech Lan W300n/rs	All versions
Logitech Lan W300n/ru2	All versions

Related CWEs

CWE-264

References (10)

http://jvn.jp/en/jp/JVN85934986/index.html

Source: vultures@jpcert.or.jp

Third Party Advisory

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000051

Source: vultures@jpcert.or.jp

Third Party AdvisoryVDB Entry

http://secunia.com/advisories/49289

Source: vultures@jpcert.or.jp

Broken Link

http://www.logitec.co.jp/info/2012/0516.html

Source: vultures@jpcert.or.jp

Vendor Advisory

http://www.securityfocus.com/bid/53685

Source: vultures@jpcert.or.jp

Third Party AdvisoryVDB Entry

http://jvn.jp/en/jp/JVN85934986/index.html