This host is running ASUS RT-N10E Wireless Router and is prone to information disclosure vulnerability.

Successful exploitation will allow remote attacker to disclose certain sensitive information. Impact Level: Application

Upgrade to ASUS Wireless-N150 Router RT-N10E firmware 2.0.0.25 or later, For updates refer to http://www.asus.com/Networking/RTN10E/#support_Download

The flaw is due to the device not properly restricting access to the '/qis/QIS_finish.htm' page.

ASUS Wireless-N150 Router RT-N10E firmware versions 2.0.0.24 and earlier.

Send direct HTTP GET request and check it is possible to read the password and other informations or not.

• http://secunia.com/advisories/55159
• http://www.kb.cert.org/vuls/id/984366
• http://www.osvdb.org/98118

---

Updated on 2015-03-25