Vulnerabilities

CVE-2017-3216

by Fred · 19/06/2017

WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to the device by performing an administrator password change on the device via a crafted POST request.

Date published : 2017-06-19

http://www.kb.cert.org/vuls/id/350135

http://blog.sec-consult.com/2017/06/ghosts-from-past-authentication-bypass.html

Similar

Tags: Cybersecurity Alert