16 matches found
VulnCheck KEV: CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
Command Execution Vulnerability in ZXHN F460 at ZTE Corporation
ZXHN F460 is ZTE's EPON mode optical cat. A command execution vulnerability exists in the ZXHN F460 of ZTE Corporation, which can be exploited by an attacker to execute arbitrary commands...
Unauthorized Access Vulnerability in ZXHN F460 of ZTE Corporation
ZXHN F460 is ZTE's EPON mode optical cat. An unauthorized access vulnerability exists in the ZXHN F460 of ZTE Corporation, which can be exploited by attackers to obtain sensitive information...
Denial of Service Vulnerability in ZXHN F460 at ZTE CORPORATION
ZXHN F460 is ZTE's EPON mode optical cat. A denial of service vulnerability exists in the ZXHN F460 of ZTE Corporation, which can be exploited by attackers to cause a denial of service attack...
ZTE F460/F660 Backdoor Unauthorized Access (CVE-2014-2321)
An Unauthorized Access Vulnerability exists in ZTE F460 and F660 cable modems. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands with administrator level access on the affected device...
ZTE GPON F427 and possibly F460/F600 - authorization bypass and cleartext password storage
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: ZTE GPON F427 and possibly F460/F600 - authorization bypass and cleartext password storage Author: Jerzy Patraszewski Date: 10 July 2015 Affected software : =================== ZTE GPON: F427 Version: V3.0 Firmware Image:...
ZTE_F460 /manager_dev_config_t.gch 信息泄漏漏洞
No description provided by source...
ZTE F460/F660 Backdoor Unauthorized Access Vulnerability (Mar 2014) - Active Check
ZTE F460/F660 cable modem devices are prone to an unauthorized access vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
Design/Logic Flaw
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
CVE-2014-2321
CVE-2014-2321 affects ZTE F460 and F660 cable modems where the web_shell_cmd.gch backdoor allows remote attackers to obtain administrative access by sending commands (e.g., using set TelnetCfg) to enable TELNET with specified credentials. The Mozi IoT analysis additionally notes that the backdoor...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using “set TelnetCfg” commands to enable a TELNET service with specified credentials. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker...
ZTE F460/F660后门未授权访问漏洞
BUGTRAQ ID: 65962 ZTE F460/F660是有线调制解调器产品。 ZTE F460/F660存在未经身份验证的后门。webshellcmd.gch脚本接受未经身份验证的命令。该脚本有时可以从WAN接口访问,攻击者在某些情况下可利用该后门执行任意管理员命令。 0 ZTE F460 ZTE F660 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.zte.com.cn/...
ZTE F460/F660 cable modems contain an unauthenticated backdoor
Overview ZTE F460/F660 cable modems contain an unauthenticated backdoor. Description ZTE F460/F660 cable modems contain an unauthenticated backdoor. The webshellcmd.gch script accepts unauthenticated commands that have administrative access to the device. It has been reported that the...
MS:BCBFD767-F460-4EBF-9C01-072E10BB8C06
...