12 lines
No EOL
460 B
Text
12 lines
No EOL
460 B
Text
source: http://www.securityfocus.com/bid/60354/info
|
|
|
|
QNAP VioStor NVR and QNAP NAS are prone to a remote code-execution vulnerability.
|
|
|
|
Successfully exploiting this issue may allow an attacker to execute arbitrary code with elevated privileges in the context of the user running the affected application.
|
|
|
|
The following are vulnerable:
|
|
|
|
QNAP VioStor NVR running firmware 4.0.3.
|
|
QNAP NAS
|
|
|
|
http://www.example.com/cgi-bin/pingping.cgi?ping_ip=1;whoami |