Remote Code Execution Vulnerability in Conarc iChannel

Remote Code Execution Vulnerability in Conarc iChannel

CVE-2017-17759 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web Connection HTTP service).

Learn more about our Web App Pen Testing.