CVE-2017-17867

Name of the Vulnerable Software and Affected Versions: Inteno iopsys versions 2.0 through 3.14 Inteno iopsys version 4.0

Description: The issue allows remote authenticated users to execute arbitrary OS commands by modifying the leasetrigger field in the odhcpd configuration. This can be done to specify an arbitrary program, such as one located on an SMB share. The problem exists due to the improper use of the /etc/uci-defaults directory, which fails to secure the OpenWrt configuration.

Recommendations: For Inteno iopsys versions 2.0 through 3.14, update the configuration to properly utilize the /etc/uci-defaults directory for securing OpenWrt. For Inteno iopsys version 4.0, update the configuration to properly utilize the /etc/uci-defaults directory for securing OpenWrt. As a temporary workaround, consider restricting access to the odhcpd configuration to minimize the risk of exploitation.