5 matches found
AT&T Takes Steps to Mitigate Botnet Found Inside Its Network
AT&T is taking action to take down a botnet that had set up shop inside its network, infecting 5,700 VoIP servers that route traffic from enterprise customers to upstream mobile providers. Researchers from Netlab, a network security division of Chinese tech giant Qihoo 360, first discovered what...
New EwDoor Botnet Targeting Unpatched AT&T Network Edge Devices
A newly discovered botnet capable of staging distributed denial-of-service DDoS attacks targeted unpatched Ribbon Communications formerly Edgewater Networks EdgeMarc appliances belonging to telecom service provider AT&T by exploiting a four-year-old flaw in the network appliances. Chinese tech...
Exploit CVE-2017-6079 - Blind Command Injection In Edgewater Edgemarc Devices
This exploit was developed based on the technical description by depthsecurity https://depthsecurity.com/blog/cve-2017-6079-blind-command-injection-in-edgewater-edgemarc-devices Description The HTTP web-management application on Edgewater Networks Edgemarc appliances has a hidden page that allows...
CVE-2017-6079
The HTTP web-management application on Edgewater Networks Edgemarc appliances has a hidden page that allows for user-defined commands such as specific iptables routes, etc., to be set. You can use this page as a web shell essentially to execute commands, though you get no feedback client-side fro...
CVE-2017-6079
CVE-2017-6079 affects Edgewater Networks Edgemarc (EdgeMarc) appliances. The HTTP web-management interface exposes a hidden page that allows user-defined commands (such as iptables rules) to be executed via a web shell-like mechanism; the flaw is described as a blind command-injection vulnerabili...