mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
755 B
755 B
CVE-2016-4965
Description
Fortinet FortiWan (formerly AscernLink) before 4.2.5 allows remote authenticated users with access to the nslookup functionality to execute arbitrary commands with root privileges via the graph parameter to diagnosis_control.php.
POC
Reference
- http://fortiguard.com/advisory/fortiwan-multiple-vulnerabilities
- https://www.kb.cert.org/vuls/id/724487
Github
No PoCs found on GitHub currently.