14 matches found
EUVD-2021-24392
Malware in sbrugna...
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...
CVE-2021-37915
An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdbdebugserver variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined...
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...
CVE-2021-37915
An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdbdebugserver variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined...
Design/Logic Flaw
An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdbdebugserver variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined...
Buffer overflow
Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...
CVE-2021-37915
The CVE-2021-37915 entry affects Grandstream HT801 Analog Telephone Adapters prior to firmware 1.0.29.8. The root cause is in the limited configuration shell, where an attacker can set the gdb_debug_server variable during configuration; after reboot, the device downloads and executes scripts from...
CVE-2021-37915
An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdbdebugserver variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined...
CVE-2021-37748
Multiple buffer overflows in the limited configuration shell /sbin/gsconfig on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manageif setting, thus bypassing the intended restrictions of this shell and taking full control ...
CVE-2021-37748
CVE-2021-37748 affects Grandstream HT801 analog telephone adapters, with multiple buffer-overflow vulnerabilities in the limited configuration shell (/sbin/gs_config) that allow a remote, authenticated attacker to execute code as root via a crafted manage_if setting, bypassing shell restrictions ...
Grandstream Ht801 安全漏洞
Grandstream Networks Grandstream Ht801 is a powerful analog telephone adapter from Grandstream Networks, USA. A security vulnerability exists in the Grandstream HT801 Analog Telephone Adaptor that stems from an issue found on the Grandstream HT801 Analog Telephone Adaptor. A malicious...
Exploit for Out-of-bounds Write in Grandstream Ht801_Firmware
Exploits for the CVE-2021...