Arbitrary Command Execution in Choice Wireless Green Packet WIXFMR-111 4G WiMax Modem

Arbitrary Command Execution in Choice Wireless Green Packet WIXFMR-111 4G WiMax Modem

CVE-2013-4731 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

ajax.cgi in the web interface on the Choice Wireless Green Packet WIXFMR-111 4G WiMax modem allows remote attackers to execute arbitrary commands via shell metacharacters in the pip parameter in an Ajax tag_ipPing request, a different vulnerability than CVE-2013-3581.

Learn more about our Web App Pen Testing.