CVE-2016-8726

CVSS 7.5 HIGHEPSS 1.4%

An exploitable null pointer dereference vulnerability exists in the Web Application /forms/web_runScript iw_filename functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. An HTTP POST request with a blank line in the header will cause a segmentation fault in the web server.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Produtos afetados

Moxa · AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://www.talosintelligence.com/reports/TALOS-2016-0240/