CVE-2013-5758

EXPLOITED

Yealink SIP-T38G - Authenticated OS Command Injection via cgiServer.exx System Method

Title source: llm

Exploitation Summary

CVE-2013-5758 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 2 public exploits from researchers including Mr.Un1k0d3r.

AI-analyzed exploit summary This exploit leverages command execution (CVE-2013-5758) to modify system file permissions and escalate privileges by altering the /etc/passwd file, granting root access to the guest account.

Description

cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system method in the body of a request, as demonstrated by running unauthorized services, changing directory permissions, and modifying files.

Exploits (2)

exploitdb WORKING POC

by Mr.Un1k0d3r · textremotehardware

https://www.exploit-db.com/exploits/33742

View Code ZIP pw:eip

This exploit leverages command execution (CVE-2013-5758) to modify system file permissions and escalate privileges by altering the /etc/passwd file, granting root access to the guest account.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Yealink VoIP Phone SIP-T38G

Auth required

Prerequisites: Authentication as admin · Network access to the device

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.001 - Setuid and Setgid

devstral-2 · analyzed Feb 16, 2026 Full analysis →