Remote Code Execution Vulnerability in ZTE F460 and F660 Cable Modems

Remote Code Execution Vulnerability in ZTE F460 and F660 Cable Modems

CVE-2014-2321 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

web_shell_cmd.gch on ZTE F460 and F660 cable modems allows remote attackers to obtain administrative access via sendcmd requests, as demonstrated by using "set TelnetCfg" commands to enable a TELNET service with specified credentials.

Learn more about our Web Application Penetration Testing UK.