An incorrect access control vulnerability in the FTP configuration of WiFiRanger devices with firmware version 7.0.8rc3 and earlier allows an attacker with adjacent network access to read the SSH Private Key and log in to the root account.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/149867/WiFiRanger-7.0.8rc3-Incorrect-Access-Control-Privilege-Escalation.html | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-10-23T21:00:00
Updated: 2018-10-23T20:57:01
Reserved: 2018-10-01T00:00:00
Link: CVE-2018-17873
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-10-23T21:30:53.567
Modified: 2020-08-24T17:37:01.140
Link: CVE-2018-17873
JSON object: View
Redhat Information
No data.
CWE