Cisco RV110W and RV215W Series Routers Arbitrary Code Execution Vulnerability

A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied input data by the web-based management interface. An attacker could exploit this vulnerability by sending crafted requests to a targeted device. A successful exploit could allow the attacker to execute arbitrary code with the privileges of the root user.

N/A

内存缓冲区边界内操作的限制不恰当

Cisco RV110W Wireless-N VPN Firewall和Cisco RV215W Wireless-N VPN Router 缓冲区错误漏洞

Cisco RV110W Wireless-N VPN Firewall和Cisco RV215W Wireless-N VPN Router都是美国思科（Cisco）公司的一款企业级路由器。 Cisco RV110W Wireless-N VPN Firewall 1.2.2.8之前版本和Cisco RV215W Wireless-N VPN Router 1.3.1.7之前版本中的Web管理界面存在缓冲区错误漏洞，该漏洞源于程序没有正确验证用户提交的数据。远程攻击者可借助特制请求利用该漏洞以root用

N/A

N/A