CVE-2013-2819 Information

Description

The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) update or (2) reprogramming action.

Reference

http://ics-cert.us-cert.gov/advisories/ICSA-14-007-01A http://www.sierrawireless.com/resources/support/airlink/docs/raven20security20vulnerability202014-01-10.pdf