14 matches found
VulnCheck KEV: CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
ZTE F460/F660 Backdoor Unauthorized Access (CVE-2014-2321)
An Unauthorized Access Vulnerability exists in ZTE F460 and F660 cable modems. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands with administrator level access on the affected device...
ZTE F660 - Remote Configuration Download
ZTE F660 - Remote Configuration Download / Exploit Title : ZTE remote configuration download Date : 09 May 2015 Exploit Author : Daniel Cisa Vendor Homepage : http://wwwen.zte.com.cn/en/ Platform : Hardware Tested On : ZTE F660 Firmware Version: 2.22.21P1T8S -------------------------- Config remo...
ZTE F660 - Remote Configuration Download
/ Exploit Title : ZTE remote configuration download Date : 09 May 2015 Exploit Author : Daniel Cisa Vendor Homepage : http://wwwen.zte.com.cn/en/ Platform : Hardware Tested On : ZTE F660 Firmware Version: 2.22.21P1T8S -------------------------- Config remote download -------------------------- ZT...
ZTE F660 - Remote Config Download Vulnerability
Exploit for hardware platform in category web applications / Exploit Title : ZTE remote configuration download Date : 09 May 2015 Exploit Author : Daniel Cisa Vendor Homepage : http://wwwen.zte.com.cn/en/ Platform : Hardware Tested On : ZTE F660 Firmware Version: 2.22.21P1T8S...
ZTE F460/F660 Backdoor Unauthorized Access Vulnerability (Mar 2014) - Active Check
ZTE F460/F660 cable modem devices are prone to an unauthorized access vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
Design/Logic Flaw
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials...
CVE-2014-2321
CVE-2014-2321 affects ZTE F460 and F660 cable modems where the web_shell_cmd.gch backdoor allows remote attackers to obtain administrative access by sending commands (e.g., using set TelnetCfg) to enable TELNET with specified credentials. The Mozi IoT analysis additionally notes that the backdoor...
CVE-2014-2321
webshellcmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using “set TelnetCfg” commands to enable a TELNET service with specified credentials. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker...
ZTE F460/F660后门未授权访问漏洞
BUGTRAQ ID: 65962 ZTE F460/F660是有线调制解调器产品。 ZTE F460/F660存在未经身份验证的后门。webshellcmd.gch脚本接受未经身份验证的命令。该脚本有时可以从WAN接口访问,攻击者在某些情况下可利用该后门执行任意管理员命令。 0 ZTE F460 ZTE F660 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.zte.com.cn/...
ZTE F460/F660 cable modems contain an unauthenticated backdoor
Overview ZTE F460/F660 cable modems contain an unauthenticated backdoor. Description ZTE F460/F660 cable modems contain an unauthenticated backdoor. The webshellcmd.gch script accepts unauthenticated commands that have administrative access to the device. It has been reported that the...
MS:22C7C152-F660-40D5-B909-D64D66988401
...