injectionmethod

2 exploits Active since Mar 2014
CVE-2014-2321 NOMISEC WORKING POC
ZTE F460 and F660 - Unauthenticated Remote Command Execution via web_shell_cmd.gch
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.
3 stars
CVE-2014-2321 NOMISEC WRITEUP
ZTE F460 and F660 - Unauthenticated Remote Command Execution via web_shell_cmd.gch
web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.