SecuritySpace - CVE-2017-11588

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-11588

Description: On Cisco DDR2200 ADSL2+ Residential Gateway DDR2200B-NA-AnnexA- FCC-V00.00.03.45.4E and DDR2201v1 ADSL2+ Residential Gateway DDR2201v1-NA-AnnexA-FCC-V00.00.03.28.3 devices, there is remote command execution via shell metacharacters in the pingAddr parameter to the waitPingqry.cgi URI. The command output is visible at /PingMsg.cmd.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-11588
BugTraq ID: 99963
http://www.securityfocus.com/bid/99963
http://seclists.org/fulldisclosure/2017/Jul/26

CVE ID:	CVE-2017-11588
Description:	On Cisco DDR2200 ADSL2+ Residential Gateway DDR2200B-NA-AnnexA- FCC-V00.00.03.45.4E and DDR2201v1 ADSL2+ Residential Gateway DDR2201v1-NA-AnnexA-FCC-V00.00.03.28.3 devices, there is remote command execution via shell metacharacters in the pingAddr parameter to the waitPingqry.cgi URI. The command output is visible at /PingMsg.cmd.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11588 BugTraq ID: 99963 http://www.securityfocus.com/bid/99963 http://seclists.org/fulldisclosure/2017/Jul/26