PT-2018-10419 · Softcase · Softcase T-Router

George Zaytsev

Publicado

2018-09-21

Atualizado

2019-10-03

CVE-2018-11241

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions SoftCase T-Router build 20112017

Description A remote attacker can read and write to arbitrary files on the system as root. This can be achieved by writing to a crontab file, which can lead to code execution. The issue is fixed in production builds as of Spring 2018.

Recommendations For SoftCase T-Router build 20112017, update to a production build released after Spring 2018 to resolve the issue. As a temporary workaround, consider restricting access to the crontab file to minimize the risk of exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-11241

Produtos afetados

Softcase T-Router

PT-2018-10419 · Softcase · Softcase T-Router

CVE-2018-11241

Identificadores relacionados

Produtos afetados

Referências · 3