20 matches found
The vulnerability of the APP Enforcement module of the DrayTek Vigor router software allows a violator to execute arbitrary code.
The vulnerability of the APP Enforcement APPE module of DrayTek Vigor router software is related to errors in the SSL certificate validation process. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability in the signature loading function of the APPE Signature Upgrade module of the DrayTek Vigor router microsoftware allows a violator to execute arbitrary code.
The vulnerability of the signature loading function in the APPE Signature Upgrade microprogramming software for DrayTek Vigor routers allows for unlimited loading of malicious files. Exploiting this vulnerability can enable a hacker to execute arbitrary code...
The vulnerability in the mainfunction.cgii web interface of DrayTek Vigor software allows a hacker to execute arbitrary code.
The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software lies in the issue of buffer overflow attacks. Exploiting this vulnerability allows an attacker to execute arbitrary code during the processing of the formuserphonenumber parameter...
The vulnerability of the chglog.cgi web interface of the DrayTek Vigor router software allows a attacker to trigger a Denial-of-Service Attack (DoS).
The vulnerability of the chglog.cgi web interface of the DrayTek Vigor router software lies in the buffer overflow that occurs during the processing of the CGIbyFieldName parameter. Exploiting this vulnerability allows an attacker to trigger a Denial-of-Service attack from a remote location...
The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary code.
The vulnerability in the mainfunction.cgi web interface of the DrayTek Vigor router software exists due to the failure to implement measures to neutralize specific elements. Exploiting this vulnerability allows an attacker to execute arbitrary commands during the processing of parameters...
The vulnerability of the sub_1DF14 function in the mainfunction.cgi web interface of the DrayTek Vigor router software allows a hacker to gain unauthorized access to confidential system files.
The vulnerability of the sub1DF14 function in the mainfunction.cgi web interface of the DrayTek Vigor router software is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to...
The vulnerability of the `ldap_search_dn` function in the `mainfunction.cgi` script of the DrayTek Vigor router’s web interface allows a hacker to execute arbitrary commands.
The vulnerability of the ldapsearchdn function in the mainfunction.cg script of the DrayTek Vigor router’s web interface is related to the lack of measures taken at the control level to clean data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The vulnerability of the vpn.cgi web interface script of the DrayTek Vigor router software allows a hacker to trigger a service failure.
The vulnerability of the vpn.cgi web interface of the DrayTek Vigor router operating system is related to buffer overflow during the processing of the sPeerId parameter. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...
The vulnerability in the SSLapp.cgi web interface of the DrayTek Vigor router software allows a attacker to trigger a Denial-of-Service Attack (DoS).
The vulnerability in the SSLapp.cgi web interface of the DrayTek Vigor router software lies in the buffer overflow that occurs during the processing of the sAppName parameter. Exploiting this vulnerability allows an attacker to trigger a Denial-of-Service Attack DoS from a remote location...
The vulnerability of the v2x00.cgi web interface of the DrayTek Vigor router software allows a attacker to trigger a Denial-of-Service Attack (DoS).
The vulnerability of the v2x00.cgi web interface of the DrayTek Vigor router software lies in the buffer overflow that occurs during the processing of the saveVPNProfile parameter. Exploiting this vulnerability allows a malicious actor to trigger a Denial-of-Service attack from a remote location...
The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software allows a hacker to inject any command they desire.
The vulnerability in the mainfunction.cgii web interface of the DrayTek Vigor router software exists due to the lack of measures taken to clean data at the control level. Exploiting this vulnerability allows a malicious actor to inject arbitrary commands remotely...
The vulnerability of the user_login.cgi web interface of the DrayTek Vigor router software allows a hacker to execute arbitrary code.
The vulnerability of the userlogin.cgi web interface of the DrayTek Vigor router software lies in improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of the web interface of DrayTek Vigor microprogramming software allows attackers to carry out cross-site scripting attacks.
The vulnerability of the web interface of DrayTek Vigor microprogramming software routers exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of DrayTek Vigor router microprogramming software, related to deficiencies in authentication procedures, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of DrayTek Vigor router microprogramming software is related to deficiencies in authentication procedures. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability of the web interface of DrayTek Vigor microprogramming software-enabled routers allows a hacker to modify settings or cause service failures.
The vulnerability of the web interface of DrayTek Vigor microprogramming software lies in the writing and reading of data beyond the buffer in memory. Exploiting this vulnerability can allow a malicious actor to modify settings remotely or cause service failures...
The vulnerability of the ft_payloads_dns() function in the web interface of the DrayTek Vigor router software allows a hacker to induce a service failure.
The vulnerability of the ftpayloadsdns function in the web interface of the DrayTek Vigor router software is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
The vulnerability in the /cgi-bin/ipfedr.cgi web interface of DrayTek Vigor software allows a attacker to execute arbitrary code or cause a service failure.
The vulnerability of the /cgi-bin/ipfedr.cgi web interface of the DrayTek Vigor router software lies in buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code or cause a service failure by sending a specially crafted HTTP request...
The vulnerability of DrayTek Vigor router microprogramming software, related to insufficiently secure data encryption, allows attackers to disclose protected information and perform a “Man-in-the-Middle” attack.
The vulnerability of DrayTek Vigor router microprogramming software is related to insufficiently robust data encryption. Exploiting this vulnerability can allow a malicious actor, operating remotely, to disclose protected information and carry out a Middleware Incident Response Team MITM attack...
The vulnerability in the /cgi-bin/wlogin.cgi web interface for managing DrayTek Vigor router software allows a hacker to execute arbitrary code.
The vulnerability in the CGI-BIN/WLOGIN.CGI web interface script of the DrayTek Vigor router software relates to the execution of operations beyond the buffer limits in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending a specially crafted HTTP POST...
DrayTek Vigor Remote Command Injection Vulnerability
DrayTek Vigor is a router. A remote command injection vulnerability exists in DrayTek Vigor, which can be exploited by attackers to allow a remote malicious user to execute arbitrary code via a crafted HTTP message containing a malformed query string in mainfunction.cgi...