85 matches found
CVE-2017-17743
Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...
CVE-2017-17743
Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11 allows authenticated remote attackers to escape the shell and escalate their privileges by uploading a .bashrc file containing th...
CVE-2017-17743
CVE-2017-17743 affects UCOPIA Wireless Appliance: restricted administration shell allows an authenticated attacker to escalate privileges by uploading a .bashrc that contains /bin/sh, effectively escaping the shell. Affected versions are before 4.4.20, 5.0.x before 5.0.19, and 5.1.x before 5.1.11...
UCOPIA Wireless Appliance 5.1 Code Execution
Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password... https://controller.access.network/upload/bd.php?0=sudo%20/usr/bin/php%20-r%20%27system"id";%27 Just push your ssh key and get nice root...
CVE-2017-11322
The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...
CVE-2017-11322
The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...
Command injection
The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...
Code injection
The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...
CVE-2017-11321
The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...
CVE-2017-11321
The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...
UCOPIA Wireless Appliance 5.1 (Captive Portal) - Root Remote Code Execution Vulnerability
Exploit for linux platform in category remote exploits Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password...
CVE-2017-11322
The chrootholeclient executable in UCOPIA Wireless Appliance before 5.1.8 allows remote attackers to gain root privileges via a dollar sign $ metacharacter in the argument to chrootholeclient...
CVE-2017-11321
The restricted shell interface in UCOPIA Wireless Appliance before 5.1.8 allows remote authenticated users to gain 'admin' privileges via shell metacharacters in the less command...
CVE-2017-11321
The CVE-2017-11321 issue affects UCOPIA Wireless Appliance (pre-5.1.8) where the restricted shell interface allows remote authenticated users to escalate to admin privileges by exploiting shell metacharacters in the less command. Affected component: restricted shell via less; root cause: improper...
CVE-2017-11322
The CVE-2017-11322 issue affects UCOPIA Wireless Appliance prior to 5.1.8, where the chroothole_client executable accepts parameters that can be exploited with a dollar sign ($) metacharacter to achieve root privileges. The vulnerability is tied to the chroothole_client argument handling, enablin...
UCOPIA Wireless Appliance 5.1.8 - Restricted Shell Escape
UCOPIA Wireless Appliance 5.1.8 - Restricted Shell Escape CVE-2017-11321 UCOPIA Wireless Appliance You can also retrieve the IP address of the outgoing interface. For this, you need to log in to the terminal of the virtual machine with the following username and password: admin/bhu85tgb, and then...
UCOPIA Wireless Appliance 5.1 (Captive Portal) - Root Remote Code Execution
UCOPIA Wireless Appliance 5.1 Captive Portal - Root Remote Code Execution Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password...
UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation
UCOPIA Wireless Appliance 5.1.8 - Local Privilege Escalation CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA...
UCOPIA Wireless Appliance < 5.1 (Captive Portal) - Root Remote Code Execution
Exploit Title: Unauthenticated remote root code execution on captive portal Ucopia '/var/www/html/upload/bd.php;echo%20t As php is in sudoers without password... https://controller.access.network/upload/bd.php?0=sudo%20/usr/bin/php%20-r%20%27system"id";%27 Just push your ssh key and get nice root...
UCOPIA Wireless Appliance < 5.1.8 - Local Privilege Escalation
CVE-2017-11322 UCOPIA Wireless Appliance 5.1.8 Privileges Escalation Asset description UCOPIA solutions bring together a combination of software, appliance and cloud services serving small to large customers. More than 12,000 UCOPIA solutions are deployed and maintained by UCOPIA expert partners...