← voltar
CVE-2012-6297

CVE-2012-6297

EPSS 1.7%
Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://lists.openwall.net/bugtraq/2013/07/12/2https://packetstormsecurity.com/files/cve/CVE-2012-6297https://seclists.org/fulldisclosure/2013/Oct/241https://vuldb.com/?id.9527