NIBE Heat Pump Web Interface 'exec.cgi' Script Remote Code Execution Vulnerability

Bugtraq ID:	39763
Class:	Design Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 28 2010 12:00AM
Updated:	May 05 2010 11:22AM
Credit:	Jelmer de Hen
Vulnerable:	NIBE Heat Pump 0
Not Vulnerable:

NIBE Heat Pump Web Interface 'exec.cgi' Script Remote Code Execution Vulnerability

NIBE heat pump web interface is prone to a remote code-execution vulnerability.

An attacker can leverage this issue to execute arbitrary code with root-level privileges. This may allow an attacker to fully compromise the device.

NIBE Heat Pump Web Interface 'exec.cgi' Script Remote Code Execution Vulnerability

The following exploits are available:

• /data/vulnerabilities/exploits/39763.py
• /data/vulnerabilities/exploits/39763-lfi.py

NIBE Heat Pump Web Interface 'exec.cgi' Script Remote Code Execution Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

NIBE Heat Pump Web Interface 'exec.cgi' Script Remote Code Execution Vulnerability

References:

• NIBE - Homepage (NIBE)
  
• NIBE Heat Pumps (Värmepumpar) (Fredrik Nordberg Almroth)
  
• NIBE Heat Pumps exploit code for RCE & LFI with root rights (Jelmer de Hen)
  
• NIBE Heat Pumps exploit code for RCE & LFI with root rights (Jelmer de Hen)