CVE-2013-6924

Published: 11/10/2017 Updated: 03/11/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Seagate BlackArmor NAS devices with firmware sg2000-2000.1331 allow remote malicious users to execute arbitrary commands via shell metacharacters in the ip parameter to backupmgt/getAlias.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
seagate blackarmor nas 220 firmware sg2000-2000.1331

Seagate BlackArmor NAS sg2000-20001331 suffers from a remote command execution vulnerability ...

# Exploit Title: Seagate BlackArmor NAS - Remote Command Execution # Google Dork: N/A # Date: 04-01-2014 # Exploit Author: Jeroen - IT Nerdbox # Vendor Homepage: <wwwseagatecom/> wwwseagatecom/ # Software Link: <wwwseagatecom/support/downloads/item/banas-220-firmware-master-dl/ > wwwseagatecom/s ...

<?php ######################################################################## ## Seagate Black Armor Exploit by J Diel <jeroen@nerdboxit> ## ######################################################################## ## Public Release v02 ######################################################################## abstract ...

CWE-77 https://exchange.xforce.ibmcloud.com/vulnerabilities/90109 http://www.securityfocus.com/bid/64655 http://packetstormsecurity.com/files/124688/Seagate-BlackArmor-NAS-sg2000-2000.1331-Remote-Command-Execution.html https://nvd.nist.gov https://packetstormsecurity.com/files/124688/Seagate-BlackArmor-NAS-sg2000-2000.1331-Remote-Command-Execution.html https://www.exploit-db.com/exploits/30725/

CVE-2013-6924

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect