Dmknght

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical vulnerability was found in the USB Password Handler component of MicroWord eScan Antivirus, leading to os command injection. The attack must be approached locally and has a high complexity, making exploitation difficult. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. Recommendations: As a temporary workaround, consider disabling the USB Password Handler component until a patch is available. Restrict local access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been found in the `strcpy` function of the `VirusPopUp` component, leading to a stack-based buffer overflow. The attack must be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For MicroWord eScan Antivirus version 7.0.32, as a temporary workaround, consider disabling the `strcpy` function of the `VirusPopUp` component until a patch is available. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been discovered in the `passPrompt` function of the USB Protection Service component. This issue leads to a stack-based buffer overflow. The attack can be launched on the local host. The exploit has been publicly disclosed and may be used. The vendor was contacted about this issue but did not respond. Recommendations: For MicroWord eScan Antivirus version 7.0.32, as a temporary workaround, consider disabling the `passPrompt` function of the USB Protection Service until a patch is available. Restrict access to the USB Protection Service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MicroWorld eScan Antivirus version 7.0.32 **Description** This issue affects the Quarantine Handler component, specifically the `rtscanner` file, leading to os command injection. The attack may be initiated remotely, with a rather high complexity of attack. The exploitation is known to be difficult. The vendor was contacted about this disclosure but did not respond. **Recommendations** MicroWorld eScan Antivirus version 7.0.32: Update the Quarantine Handler component to prevent os command injection, or apply a patch if provided by the vendor to fix the issue in the `rtscanner` file. As a temporary workaround, consider disabling the `rtscanner` component until a patch is available.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-600M C1 version 3.08 **Description** A critical issue has been found in the Telnet Service component of the affected device, caused by a buffer overflow when manipulating the `username` argument. This can be exploited remotely, potentially allowing an attacker to execute arbitrary code. The issue affects products that are no longer supported by the maintainer and should be retired and replaced. **Recommendations** For D-Link DIR-600M C1 version 3.08, it is recommended to retire and replace the device as it is no longer supported by the maintainer. As a temporary workaround, consider disabling the Telnet Service until a replacement can be implemented. Restrict access to the device to minimize the risk of exploitation. Avoid using the `username` argument in the Telnet Service until the issue is resolved by replacing the device.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK N200RE V5 version 9.3.5u.6437 B20230519 **Description** The issue is related to the `Validity check()` function in the TOTOLINK N200RE V5 router's firmware. It involves the use of uncontrolled format strings when processing the `%` symbol, which can lead to format string vulnerabilities. This can be exploited remotely, allowing an attacker to execute arbitrary commands. The root cause is a format string issue that enables OS command injection by bypassing validation. **Recommendations** For TOTOLINK N200RE V5 version 9.3.5u.6437 B20230519, as a temporary workaround, consider disabling the `Validity check()` function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. Avoid using the `%` symbol in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023 **Description** A critical issue has been found, affecting the `setTracerouteCfg` function, which can lead to os command injection. This can be exploited remotely. The issue is related to errors in processing input data, allowing an attacker to execute arbitrary commands. **Recommendations** For TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023, as a temporary workaround, consider disabling the `setTracerouteCfg` function until a patch is available. Restrict access to the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023 **Description** A critical issue affects the `setWanCfg` function, leading to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023, as a temporary workaround, consider disabling the `setWanCfg` function until a patch is available. Restrict access to the vulnerable function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023 **Description** A critical issue was found, affecting the `setDiagnosisCfg` function, which leads to os command injection. This can be initiated remotely. **Recommendations** For TOTOLINK EX1200L version EN V9.3.5u.6146 B20201023, as a temporary workaround, consider disabling the `setDiagnosisCfg` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MicroWorld eScan Anti-Virus version 7.0.32 **Description** A critical vulnerability was found in MicroWorld eScan Anti-Virus on Linux, affecting an unknown part of the file runasroot. The manipulation leads to incorrect execution-assigned permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.