10 matches found
Exploit for CVE-2025-56015
CVE-2025-56015 GenieACS RCE !Authorhttps://img.shields.i...
The vulnerability of the Zyxel Eir D1000 router’s microprogramming software, related to deficiencies in access control for the TR-064 protocol, allows a intruder to execute arbitrary commands.
The vulnerability of the Zyxel Eir D1000 router’s microprogramming software is related to deficiencies in access control for the TR-064 protocol. This allows a malicious actor to execute arbitrary commands through the TCP port 7547, by utilizing the NewNTPServer function...
Eir D1000 Arbitrary Command Execution Vulnerability
The Eir D1000 is a modem from Eir Ireland. A security vulnerability exists in the Eir D1000 modem that stems from the program failing to properly restrict the TR-064 protocol. A remote attacker can exploit the vulnerability to execute arbitrary commands on TCP port 7547...
CVE-2016-10372
The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port 80, retrieving the login password which defaults to the Wi-Fi password, and using the NewNTPServer...
Design/Logic Flaw
The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port 80, retrieving the login password which defaults to the Wi-Fi password, and using the NewNTPServer...
CVE-2016-10372
The Eir D1000 modem does not properly restrict the TR-064 protocol, which allows remote attackers to execute arbitrary commands via TCP port 7547, as demonstrated by opening WAN access to TCP port 80, retrieving the login password which defaults to the Wi-Fi password, and using the NewNTPServer...
Zyxel / Eir D1000 DSL Modem NewNTPServer Command Injection Over TR-064 Exploit
Broadband DSL modems manufactured by Zyxel and distributed by some European ISPs are vulnerable to a command injection vulnerability when setting the 'NewNTPServer' value using the TR-64 SOAP-based configuration protocol. In the tested case, no authentication is required to set this value on...
New Mirai Variant Targets Routers, Knocks 900,000 Offline
Attackers are targeting DSL routers this week with what’s being called a potent new variant of the Mirai malware that knocked offline major Internet companies like Twitter and Spotify last month. According to Germany’s Deutsche Telekom 900,000 of its DSL router customers have already been targete...
Cyber Attack Knocks Nearly a Million Routers Offline
Mirai Botnet is getting stronger and more notorious each day that passes by. The reason: Insecure Internet-of-things Devices. Last month, the Mirai botnet knocked the entire Internet offline for a few hours, crippling some of the world's biggest and most popular websites. Now, more than 900,000...
PT-2016-3182 · Eir · Eir D1000
Name of the Vulnerable Software and Affected Versions: Eir D1000 modem affected versions not specified Description: The issue is related to the improper restriction of the TR-064 protocol, allowing remote attackers to execute arbitrary commands via TCP port 7547. This can be demonstrated by openi...