CVE-2017-3216
CVE-2017-3216 affects WiMAX routers that use MediaTek libmtk httpd plugin and a customized commit2.cgi. A crafted POST request (ADMIN_PASSWD) can bypass authentication and let an unauthenticated attacker change the administrator password, gaining admin access and potentially full control of the d...