CVE-2013-5758 in SIP-T38Gthông tin

Tóm tắt

Bởi MITRE

cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system method in the body of a request, as demonstrated by running unauthorized services, changing directory permissions, and modifying files.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Đặt trước

18/09/2013

Tiết lộ

03/08/2014

Kiểm duyệt

được chấp nhận

mục

VDB-70535

Khai thác

Tải xuống

EPSS

0.11892

KEV

không

Các hoạt động

rất thấp

Nguồn

Interested in the pricing of exploits?

See the underground prices here!