2 matches found
CVE-2014-8886
AVM FRITZ!OS before 6.30 is affected by a vulnerability where the firmware update package is extracted before cryptographic signature verification. This allows a remote attacker to create symlinks or overwrite critical files via a crafted firmware image, potentially leading to arbitrary code exec...
CVE-2014-8886
AVM FRITZ!OS before 6.30 extracts the contents of firmware updates before verifying their cryptographic signature, which allows remote attackers to create symlinks or overwrite critical files, and consequently execute arbitrary code, via a crafted firmware image...