CVE-2017-5135 in DPC3928SLИнформация

Сводка

по MITRE

Certain Technicolor devices have an SNMP access-control bypass, possibly involving an ISP customization in some cases. The Technicolor (formerly Cisco) DPC3928SL with firmware D3928SL-P15-13-A386-c3420r55105-160127a could be reached by any SNMP community string from the Internet; also, you can write in the MIB because it provides write properties, aka Stringbleed. NOTE: the string-bleed/StringBleed-CVE-2017-5135 GitHub repository is not a valid reference as of 2017-04-27; it contains Trojan horse code purported to exploit this vulnerability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Резервировать

03.01.2017

Раскрытие

27.04.2017

Модерация

принято

Вход

VDB-100630

Эксплойт

Скачать

EPSS

0.17534

KEV

Нет

Деятельности

Очень низкий

Источники

Do you want to use VulDB in your project?

Use the official API to access entries easily!