PT-2020-5953 · Moxa · Moxa Mgate 5105-Mb-Eip

Charles Perine

Published

2020-01-06

Updated

2020-02-19

CVE-2020-8858

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Moxa MGate 5105-MB-EIP version 4.1

Description: The issue is related to the DestIP parameter in the Moxa MGate 5105-MB-EIP firmware, which lacks proper validation of user-supplied strings before executing system calls. This allows remote attackers to execute arbitrary code, potentially leading to privilege escalation. The exploitation requires authentication. The vulnerability is exploited through the DestIP parameter within the MainPing.asp endpoint.

Recommendations: For version 4.1, consider restricting access to the MainPing.asp endpoint and the DestIP parameter to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

BDU:2021-02127

CVE-2020-8858

ZDI-20-214

Affected Products

Moxa Mgate 5105-Mb-Eip

PT-2020-5953 · Moxa · Moxa Mgate 5105-Mb-Eip

CVE-2020-8858

Weakness Enumeration

Related Identifiers

Affected Products

References · 5