Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. There are default weak credentials that can be used to authenticate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Grandstream Ht801 缓冲区错误漏洞
Vulnerability Description
Grandstream Networks Grandstream Ht801是美国Grandstream Networks公司的一款功能强大的模拟电话适配器。 Grandstream HT801 devices 1.0.29之前版本存在安全漏洞,该漏洞源于Grandstream HT801设备上的有限配置shell (/sbin/gs_config)中存在多个缓冲区溢出漏洞,允许远程身份验证用户通过精心设计的manage_if设置作为根用户执行任意代码,从而绕过该shell的预期限制,并完全控制设备,并且
CVSS Information
N/A
Vulnerability Type
N/A