mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
780 B
780 B
CVE-2020-10825
Description
A stack-based buffer overflow in /cgi-bin/activate.cgi while base64 decoding ticket parameter on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request (issue 3 of 3).
POC
Reference
- https://slashd.ga/2020/03/draytek-vulnerabilities/
- https://slashd.ga/2020/03/draytek-vulnerabilities/
Github
No PoCs found on GitHub currently.