CVE-2018-10093 PoC — AudioCodes 400HD 命令注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-10093.yaml

Associated Vulnerability

Title:AudioCodes 400HD 命令注入漏洞 (CVE-2018-10093)
Description:AudioCodes 400HD是以色列AudioCodes公司的一款400HD系列IP电话产品。 AudioCodes 400HD中存在命令注入漏洞，该漏洞源于程序没有正确地过滤用户输入。攻击者可利用该漏洞注入任意命令，控制设备。

Description

AudioCodes IP phone 420HD devices using firmware version 2.2.12.126 allow remote code execution.

File Snapshot


 id: CVE-2018-10093

info:
  name: AudioCodes 420HD - Remote Code Execution
  author: wisnupramoedya


...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!