A vulnerability was found in opendreambox 2.0.0. It has been declared as critical. This vulnerability affects some unknown functionality of the file enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py of the component Webadmin Plugin. The manipulation of the argument command with an unknown input leads to a os command injection vulnerability. The CWE definition for the vulnerability is CWE-78. The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

enigma2-plugins/blob/master/webadmin/src/WebChilds/Script.py in the webadmin plugin for opendreambox 2.0.0 allows remote attackers to execute arbitrary OS commands via shell metacharacters in the command parameter to the /script URI.

The bug was discovered 07/05/2017. The weakness was presented 09/04/2017 (Website). The advisory is shared for download at the-infosec.com. This vulnerability was named CVE-2017-14135 since 09/04/2017. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1202.

The vulnerability was handled as a non-public zero-day exploit for at least 61 days. During that time the estimated underground price was around $0-$5k.

Proper firewalling of is able to address this issue.

Productinfo

Name

• opendreambox

Version

• 2.0.0

CPE 2.3info

• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion