Exploits / Vulnerability Discovered : 2022-05-11 |
Type : remote |
Platform : hardware
This exploit / vulnerability Tenda hg6 v3.3.0 remote command injection is for educational purposes only and if it is used you will do on your own risk!
Summary: HG6 is an intelligent routing passive optical network
terminal in Tenda FTTH solution. HG6 provides 4 LAN ports(1*GE,3*FE),
a voice port to meet users' requirements for enjoying the Internet,
HD IPTV and VoIP multi-service applications.
Desc: The application suffers from an authenticated OS command injection
vulnerability. This can be exploited to inject and execute arbitrary
shell commands through the 'pingAddr' and 'traceAddr' HTTP POST parameters
in formPing, formPing6, formTracert and formTracert6 interfaces.
Tested on: Boa/0.93.15
Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
@zeroscience