The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028 allows an attacker to login to the admin account via TELNET.
References
Link | Resource |
---|---|
https://blog.burghardt.pl/2019/02/dasan-h665-has-vendor-backdoor-built-into-busyboxs-bin-login/ | Exploit Third Party Advisory |
https://seclists.org/bugtraq/2019/Feb/32 | Exploit Mailing List Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:19:34
Updated: 2022-10-03T16:19:34
Reserved: 2022-10-03T00:00:00
Link: CVE-2019-8950
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-02-20T04:29:00.377
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-8950
JSON object: View
Redhat Information
No data.
CWE