Get a Pentest and security assessment of your IT network.

News

Vulnerability Spotlight: Tenda AC9 /goform/WanParameterSetting command injection vulnerability

The Tenda AC9 is one of the most popular and affordable dual-band gigabit WiFi Router available online. A command injection vulnerability exists in the `/goform/WanParamSetting` resource. A specially crafted HTTP POST request can cause a command injection, resulting in code execution. The attacker can get reverse shell running as root using this command injection. Tenda failed to patch it per Ciscos 90-day deadline. The following SNORT rules will detect exploitation attempts.”]

Source: https://blog.talosintelligence.com/2019/11/vulnerability-spotlight-tenda-ac9-command-nov-2019.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Terrorism WEEKLY DIGESTTHREAT INTELLIGENCE FEED 23rd Jul 2nd

News

Attacker.NET : Server Management & Security, Website Malware Removal & Website Security