CVE-2018-6000
Summary
| CVE | CVE-2018-6000 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-01-22 20:29:00 UTC |
| Updated | 2019-10-03 00:03:00 UTC |
| Description | An issue was discovered in AsusWRT before 3.0.0.4.384_10007. The do_vpnupload_post function in router/httpd/web.c in vpnupload.cgi provides functionality for setting NVRAM configuration values, which allows attackers to set the admin password and launch an SSH daemon (or enable infosvr command mode), and consequently obtain remote administrative access, via a crafted request. This is available to unauthenticated attackers in conjunction with CVE-2018-5999. |
Risk And Classification
Problem Types: CWE-862
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| AsusWRT LAN - Remote Code Execution (Metasploit) - Hardware remote Exploit | EXPLOIT-DB | www.exploit-db.com | |
| AsusWRT Router < 3.0.0.4.380.7743 - LAN Remote Code Execution - Hardware remote Exploit | EXPLOIT-DB | www.exploit-db.com | Exploit, Third Party Advisory, VDB Entry |
| PoC/asuswrt-lan-rce.txt at master · pedrib/PoC · GitHub | MISC | github.com | Exploit, Third Party Advisory |
| 401 Authorization Required | MISC | blogs.securiteam.com | Exploit, Technical Description, Third Party Advisory |
| raw.githubusercontent.com/pedrib/PoC/master/exploits/metasploit/asuswrt_lan_rce.rb | MISC | raw.githubusercontent.com | Exploit, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.