CVE-2012-1250 - Oblate Plants

Description

Logitec LAN-W300N/R routers with firmware before 2.27 do not properly restrict login access which allows remote attackers to obtain administrative privileges and modify settings via vectors related to PPPoE authentication.

Reference

http://jvndb.jvn.jp/jvndb/JVNDB-2012-000051 http://jvn.jp/en/jp/JVN85934986/index.html http://www.logitec.co.jp/info/2012/0516.html http://www.securityfocus.com/bid/53685 http://secunia.com/advisories/49289