Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2013-5758
Description:cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system method in the body of a request, as demonstrated by running unauthorized services, changing directory permissions, and modifying files.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2013-5758
http://www.exploit-db.com/exploits/33741
http://www.exploit-db.com/exploits/33742
http://packetstormsecurity.com/files/127093/Yealink-VoIP-Phone-SIP-T38G-Privilege-Escalation.html
http://packetstormsecurity.com/files/127096/Yealink-VoIP-Phone-SIP-T38G-Remote-Command-Execution.html
http://www.osvdb.org/108080




© 1998-2024 E-Soft Inc. All rights reserved.