← back
CVE-2013-6343

CVE-2013-6343

EPSS 9.7%
Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_flag parameter to APP_Installation.asp.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/31033unverifiedcve_referencewww.exploit-db.com/exploits/31033unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://infosec42.blogspot.com/2014/01/exploit-asus-rt-n56u-remote-root-shell.htmlhttp://osvdb.org/102267https://support.t-mobile.com/docs/DOC-21994http://www.exploit-db.com/exploits/31033http://www.securityfocus.com/bid/65046