CVE Vulnerabilities

CVE-2011-5010

Published: Dec 25, 2011 | Modified: Feb 17, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

apps/a3/cfg_ethping.cgi in the Ctek SkyRouter 4200 and 4300 allows remote attackers to execute arbitrary commands via shell metacharacters in the PINGADDRESS parameter for a u action.

Affected Software

Name Vendor Start Version End Version
Skyrouter Ctekproducts 4200 4200
Skyrouter Ctekproducts 4300 4300

References