Main Vulnerability Database SB2018010431

SB2018010431 - Remote code execution in Linksys WVBRO-25

Published: January 4, 2018

Security Bulletin ID SB2018010431

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Command injection (CVE-ID: CVE-2017-17411)

The vulnerability allows a remote unauthenticated attacker to execute arbitrary code with elevated privileges on the target system.

The weakness exists in the web management portal due to improper validation of user-supplied input in the User-Agent header before the execution of a system call. A remote attacker can submit a specially crafted GET request and execute arbitrary code with root privileges.

Remediation

Install update from vendor's website.

References

https://github.com/rapid7/metasploit-framework/pull/9336