OpenDreambox 2.0.0 - Remote Code Execution

OpenDreambox 2.0.0 is susceptible to remote code execution via the webadmin plugin. Remote attackers can execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI in enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py. id: CVE-2017-14135 info: nam...

Dreambox Opendreambox Command Execution (CVE-2017-14135)

A command execution vulnerability exists in dreambox opendreambox. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

OpenDreamBox WebAdmin Plugin Remote Code Execution

A remote code execution vulnerability exists in OpenDreamBox WebAdmin Plugin . Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

VulnCheck KEV: CVE-2017-14135

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI...

opendreambox Operating System Command Injection Vulnerability

opendreambox is a set of embedded Linux system build framework. webadmin plugin is one of the web management plugin. An operating system command injection vulnerability exists in the enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py file of the webadmin plugin in version 2.0.0 of...

Design/Logic Flaw

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI...

CVE-2017-14135

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI...

CVE-2017-14135

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI...

CVE-2017-14135

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI...

CVE-2017-14135

Summary: CVE-2017-14135 affects OpenDreambox 2.0.0, specifically the webadmin plugin’s Script.py in enigma2-plugins. The vulnerability allows remote code execution via shell metacharacters in the command parameter to the /script URI, enabling an attacker to run arbitrary OS commands on the target...

OpenDreamBox Plugin Remote Code Execution Vulnerability

Dreambox is a wireless routing system similar to openwrt. A remote code execution vulnerability exists in the OpenDreamBox plugin, which allows attackers to exploit the vulnerability to illegally execute arbitrary commands...

OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution Vulnerability

Exploit for hardware platform in category web applications Exploit Title: OpenDreamBox 2.0.0 - Plugin WebAdmin RCE Shodan Dork: "DreamBox" 200 ok" Date: 07/03/17 Exploit Author: Jonatas Fil Vendor Homepage: https://www.dreamboxupdate.com Software Link:...

OpenDreamBox 2.0.0 Remote Code Execution

Exploit Title: OpenDreamBox 2.0.0 - Plugin WebAdmin RCE Shodan Dork: "DreamBox" 200 ok" Date: 07/03/17 Exploit Author: Jonatas Fil Vendor Homepage: https://www.dreamboxupdate.com Software Link: https://www.dreamboxupdate.com/opendreambox/2.0.0 Version: 2.0.0 Vulnerabilty: Remote Command Execution...

OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution

OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution Exploit Title: OpenDreamBox 2.0.0 - Plugin WebAdmin RCE Shodan Dork: "DreamBox" 200 ok" Date: 07/03/17 Exploit Author: Jonatas Fil Vendor Homepage: https://www.dreamboxupdate.com Software Link:...

OpenDreamBox 2.0.0 Plugin WebAdmin - Remote Code Execution

Exploit Title: OpenDreamBox 2.0.0 - Plugin WebAdmin RCE Shodan Dork: "DreamBox" 200 ok" Date: 07/03/17 Exploit Author: Jonatas Fil Vendor Homepage: https://www.dreamboxupdate.com Software Link: https://www.dreamboxupdate.com/opendreambox/2.0.0 Version: 2.0.0 Vulnerabilty: Remote Command Execution...