Remote Command Execution in Allied Telesis AT-RG634A ADSL Broadband Router and iMG Series

Remote Command Execution in Allied Telesis AT-RG634A ADSL Broadband Router and iMG Series

CVE-2014-1982 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges and execute arbitrary commands via a direct request to cli.html.

Learn more about our Web Application Penetration Testing UK.