### [CVE-2016-5053](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5053)
![](https://img.shields.io/static/v1?label=Product&message=OSRAM%20SYLVANIA%20Osram%20Lightify%20Home%20before%202016-07-26&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Pre-Authentication%20Command%20Execution&color=brighgreen)

### Description

OSRAM SYLVANIA Osram Lightify Home before 2016-07-26 allows remote attackers to execute arbitrary commands via TCP port 4000.

### POC

#### Reference
- https://community.rapid7.com/community/infosec/blog/2016/07/26/r7-2016-10-multiple-osram-sylvania-osram-lightify-vulnerabilities-cve-2016-5051-through-5059
- https://community.rapid7.com/community/infosec/blog/2016/07/26/r7-2016-10-multiple-osram-sylvania-osram-lightify-vulnerabilities-cve-2016-5051-through-5059

#### Github
No PoCs found on GitHub currently.