Entreprise d'experts en Sécurité Informatique : Audits et conseils en cybersécurité
Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com


CVE-2014-2321

Description

web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.

POC

Reference

No PoCs from references.

Github

- https://github.com/20142995/nuclei-templates

- https://github.com/ARPSyndicate/cvemon

- https://github.com/ARPSyndicate/kenzer-templates

- https://github.com/BugBlocker/lotus-scripts

- https://github.com/CyAxe/lotus-scripts

- https://github.com/Elsfa7-110/kenzer-templates

- https://github.com/d4n-sec/d4n-sec.github.io

- https://github.com/injectionmethod/Windows-ZTE-Loader

- https://github.com/injectionmethod/ZTE-Vuln-4-Skids

- https://github.com/ker2x/DearDiary

- https://github.com/n0-traces/cve_monitor

- https://github.com/rusty-sec/lotus-scripts