Stack overflow

2015-06-1914:59:00

PRIOn knowledge base

www.prio-n.com

8.8 High

AI Score

Confidence

High

0.814 High

EPSS

Percentile

98.4%

JSON

Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.

CPENameOperatorVersion
air_firmwarele1.0.2.0

CPE	Name	Operator	Version
	air_firmware	le	1.0.2.0

References

osvdb.org/show/osvdb/120335

www.bmicrosystems.com/blog/exploiting-the-airties-air-series/

www.securityfocus.com/bid/75355

www.exploit-db.com/exploits/36577/

www.exploit-db.com/exploits/37170/