← back
CVE-2015-2797

CVE-2015-2797

EPSS 77.6%
Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.
Affected products
n/a · n/a
public PoCs found5
githubgithub.com/Bariskizilkaya/CVE-2015-2797-PoC0cve_referencewww.exploit-db.com/exploits/36577/unverifiedcve_referencewww.exploit-db.com/exploits/37170/unverifiedexploitdbwww.exploit-db.com/exploits/37170unverifiedexploitdbwww.exploit-db.com/exploits/36577unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/show/osvdb/120335https://www.exploit-db.com/exploits/36577/https://www.exploit-db.com/exploits/37170/http://www.bmicrosystems.com/blog/exploiting-the-airties-air-series/http://www.securityfocus.com/bid/75355