Command Injection in the Ping Module in the Web Interface on Technicolor TD5336 OI_Fw_v7 devices allows remote malicious users to execute arbitrary OS commands as root via shell metacharacters in the pingAddr parameter to mnt_ping.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
technicolor td5336_firmware 7.0 |