CVE-2018-19524

Name of the Vulnerable Software and Affected Versions Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1 version not specified Shenzhen Skyworth DT721-cb SDOTBGN1 version not specified Shenzhen Skyworth DT741-cb SDOTBGN1 version not specified

Description An issue was discovered that allows remote attackers to cause a denial of service or achieve unauthenticated remote code execution. This is possible due to control of certain registers when a long password is passed to the Web passwd function.

Recommendations For Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, consider restricting access to the Web passwd function until a fix is available. For Shenzhen Skyworth DT721-cb SDOTBGN1, consider restricting access to the Web passwd function until a fix is available. For Shenzhen Skyworth DT741-cb SDOTBGN1, consider restricting access to the Web passwd function until a fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.