CVE-2017-16934
Last modified
CVE-2017-16934 is a vulnerability of currently unknown severity. The web server on DBL DBLTek devices allows remote attackers to execute arbitrary OS commands by obtaining the admin password via a frame.html?content=/dev/mtdblock/5 request, and then using this password for the HTTP Basic Authentication needed for a change_password.csp request, which supports a "<%%25call system.exec:" string in the passwd parameter.. EPSS estimates a 13.46% chance of exploitation in the next 30 days.
Description
The web server on DBL DBLTek devices allows remote attackers to execute arbitrary OS commands by obtaining the admin password via a frame.html?content=/dev/mtdblock/5 request, and then using this password for the HTTP Basic Authentication needed for a change_password.csp request, which supports a "<%%25call system.exec:" string in the passwd parameter.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Dbltek | Web Server | All versions |
References
- https://blogs.securiteam.com/index.php/archives/3437Exploit, Third Party Advisory
- https://blogs.securiteam.com/index.php/archives/3437Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-16934?
How severe is CVE-2017-16934?
How do I fix CVE-2017-16934?
Are you affected by CVE-2017-16934?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST