| |
Vulnerability CVE-2015-2797
Published: 2015-06-19
| Description: |
Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login. |
CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
10/10 |
10/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
http://www.bmicrosystems.com/blog/exploiting-the-airties-air-series/
http://www.securityfocus.com/bid/75355
https://www.exploit-db.com/exploits/36577/
https://www.exploit-db.com/exploits/37170/
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
