Ctek SkyRouter 4200 And 4300 Series Routers Remote Arbitrary Command Execution Vulnerability Network Vulnerability

Summary

Ctek SkyRouter 4200 and 4300 series routers are prone to a remote arbitrary command-execution vulnerability because it fails to adequately sanitize user-supplied input. Remote attackers can exploit this issue to execute arbitrary shell commands with superuser privileges, which may facilitate a complete compromise of the affected device.

References

http://www.ctekproducts.com/
http://www.securityfocus.com/bid/50867

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-5010

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Assesi 'bg' Parameter SQL Injection vulnerability
Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities
AdaptBB Multiple Input Validation Vulnerabilities
AlienVault Open Source SIEM (OSSIM) 'timestamp' Parameter Directory Traversal Vulnerability
Acidcat CMS Multiple Vulnerabilities

Ctek SkyRouter 4200 and 4300 Series Routers Remote Arbitrary Command Execution Vulnerability

Take action and discover your vulnerabilities