1337day-Exploits Posted October 11, 2021 Share Posted October 11, 2021 Cypress Solutions CTM-200 wireless gateway version 2.7.1 suffers from an authenticated semi-blind OS command injection vulnerability. This can be exploited to inject and execute arbitrary shell commands as the root user through the 'ctm-config-upgrade.sh' script leveraging the 'fw_url' POST parameter used in the cmd upgreadefw as argument, called by ctmsys() as pointer to execv() and make_wget_url() function to the wget command in /usr/bin/cmdmain ELF binary. This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
.png.e337492d02c345db2116506bc63cff1d.png.0dc0909174d6ced1d5ff3c1bbf051030.png)
.png.e337492d02c345db2116506bc63cff1d.png)
Hack Tools Resurrection
1337day-Exploits
Recommended Posts