Remote Code Execution Vulnerability in Intelbras WRN 150 Devices

Remote Code Execution Vulnerability in Intelbras WRN 150 Devices

CVE-2017-14942 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Intelbras WRN 150 devices allow remote attackers to read the configuration file, and consequently bypass authentication, via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg containing an admin:language=pt cookie.

Learn more about our Web Application Penetration Testing UK.