Lucene search
PRIOn knowledge basePRION:CVE-2017-9833HistoryJun 24, 2017 - 2:29 a.m.
Design/Logic Flaw
2017-06-2402:29:00
PRIOn knowledge base
www.prio-n.com
3
DISPUTED /cgi-bin/wapopen in Boa 0.94.14rc21 allows the injection of “…/…” using the FILECAMERA variable (sent by GET) to read files with root privileges. NOTE: multiple third parties report that this is a system-integrator issue (e.g., a vulnerability on one type of camera) because Boa does not include any wapopen program or any code to read a FILECAMERA variable.
| CPE | Name | Operator | Version |
|---|---|---|---|
| boa | eq | 0.94.14.21 |
Related
zdt
zdt
BOA Web Server 0.94.14rc21 - Arbitrary File Access Vulnerability
2017-07-03 00:00:00
ubuntucve
ubuntucve
CVE-2017-9833
2017-06-24 00:00:00
nuclei
nuclei
BOA Web Server 0.94.14 - Arbitrary File Access
2022-03-06 22:58:38
exploitpack
exploitpack
BOA Web Server 0.94.14rc21 - Arbitrary File Access
2017-06-20 00:00:00
cve
cve
CVE-2017-9833
2017-06-24 02:29:00
packetstorm
packetstorm
BOA Web Server 0.94.14rc21 Arbitrary File Access
2017-07-03 00:00:00
attackerkb
attackerkb
CVE-2017-9833
2017-06-24 00:00:00
cvelist
cvelist
CVE-2017-9833
2017-06-24 00:00:00
openvas
openvas
Multiple IP-Cameras Directory Traversal Vulnerability
2017-06-26 00:00:00
nvd
nvd
CVE-2017-9833
2017-06-24 02:29:00
exploitdb
exploitdb
BOA Web Server 0.94.14rc21 - Arbitrary File Access
2017-06-20 00:00:00
thn
thn
Hackers Exploiting Abandoned Boa Web Servers to Target Critical Industries
2022-11-23 09:28:00