The ZyXEL P660HN-T1A v2 TCLinux Fw #7.3.37.6 router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding function, which is only accessible by an authenticated user. The vulnerability is in the logSet.asp page and can be exploited through the ServerIP parameter. Authentication can be achieved by exploiting CVE-2017-18371.
References
Link | Resource |
---|---|
http://www.zyxel.com/support/announcement_unauthenticated.shtml | Broken Link |
https://raw.githubusercontent.com/pedrib/PoC/master/advisories/zyxel_trueonline.txt | Exploit Third Party Advisory |
https://seclists.org/fulldisclosure/2017/Jan/40 | Mailing List Exploit Third Party Advisory |
https://ssd-disclosure.com/index.php/archives/2910 | Exploit Technical Description Third Party Advisory |
https://unit42.paloaltonetworks.com/new-mirai-variant-targets-enterprise-wireless-presentation-display-systems/ | Technical Description Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-05-02T16:14:52
Updated: 2019-05-02T16:14:52
Reserved: 2019-05-02T00:00:00
Link: CVE-2017-18370
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-05-02T17:29:00.880
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-18370
JSON object: View
Redhat Information
No data.
CWE