| Название | FiberHome AN5506-01-A RP2511 Command Injection |
|---|
| Описание | Remote Command Execution (RCE) was identified in the Fiberhome ONU model AN5506-01A. To exploit it, simply navigate to the "Application" section and then to "Diagnosis". In the field for entering a "Destination Address", insert any random host followed by a ;
Script: google.com;cat /etc/passwd |
|---|
| Источник | ⚠️ http://x.x.x.x/login.html |
|---|
| Пользователь | Fergod (UID 55882) |
|---|
| Представление | 14.02.2025 22:24 (1 Год назад) |
|---|
| Модерация | 23.02.2025 08:14 (8 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 296606 [FiberHome AN5506-01A ONU GPON RP2511 Diagnosis Destination Address эскалация привилегий] |
|---|
| Баллы | 14 |
|---|