Vulnerability Description
Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view sensitive information from referrer logs due to inadequate handling of HTTP referrer headers.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Brother | Mfc-9970Cdw Firmware | 1.10 |
| Brother | Mfc-9970Cdw | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/121553/Brother-MFC-9970CDW-Firmware-0D-CrosExploitThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84091Third Party AdvisoryVDB Entry
- https://www.securityfocus.com/bid/59725Third Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/121553/Brother-MFC-9970CDW-Firmware-0D-CrosExploitThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/84091Third Party AdvisoryVDB Entry
- https://www.securityfocus.com/bid/59725Third Party AdvisoryVDB Entry
FAQ
What is CVE-2013-2674?
CVE-2013-2674 is a vulnerability with a CVSS score of 7.5 (HIGH). Brother MFC-9970CDW 1.10 firmware L devices contain an information disclosure vulnerability which allows remote attackers to view sensitive information from referrer logs due to inadequate handling of...
How severe is CVE-2013-2674?
CVE-2013-2674 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-2674?
Check the references section above for vendor advisories and patch information. Affected products include: Brother Mfc-9970Cdw Firmware, Brother Mfc-9970Cdw.