This weekend I had the opportunity to perform some security tests on the Ubee EVW3200, a commonly used cable modem/router in the Netherlands. And yes, I do hate WPS enabled devices!
Multiple vulnerabilities were discovered in this modem/router:
- Multiple Cross Site Request Forgery vulnerabilities (only one is shown in the video).
- Multiple Persistent Cross Site Scripting vulnerabilities.
The video shows a CSRF attack which disables the firewall settings, however it was also found possible to perform many other actions using this type of attack. Another example is a factory reset of the device.