CVE-2015-2797

Airties Air Firmware < 1.0.2.0 - Memory Corruption

Title source: rule

Description

Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotehardware

https://www.exploit-db.com/exploits/37170

View Code ZIP pw:eip

exploitdb WORKING POC

by Batuhan Burakcin · pythonremotemultiple

https://www.exploit-db.com/exploits/36577

View Code ZIP pw:eip

nomisec WORKING POC

by Bariskizilkaya · poc

https://github.com/Bariskizilkaya/CVE-2015-2797-PoC

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/airties_login_cgi_bof.rb

View Code ZIP pw:eip

References (5)

[Third Party Advisory, VDB Entry] http://osvdb.org/show/osvdb/120335

[Exploit] http://www.bmicrosystems.com/blog/exploiting-the-airties-air-series/

[Exploit] https://www.exploit-db.com/exploits/36577/

[Exploit] https://www.exploit-db.com/exploits/37170/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/75355

Scores

EPSS 0.7702

EPSS Percentile 99.0%

Details

CWE

CWE-119

Status published

Products (1)

airties/air_firmware < 1.0.2.0

Published Jun 19, 2015

Tracked Since Feb 18, 2026