10
CVSSv2

CVE-2018-19524

Published: 21/03/2019 Updated: 08/05/2019
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

An issue exists on Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, DT721-cb SDOTBGN1, and DT741-cb SDOTBGN1 devices. A long password to the Web_passwd function allows remote malicious users to cause a denial of service (segmentation fault) or achieve unauthenticated remote code execution because of control of registers S0 through S4 and T4 through T7.

Vulnerability Trend

Affected Products

Exploits

''' ======================================================== Unauthenticated Stack Overflow in Multiple Gpon Devices ======================================================== contents:: Table Of Content Overview ======== Title:- StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals CVE-ID :- CVE-2018-19524 Author ...

Mailing Lists

A stack overflow vulnerability has been identified in multiple Skyworth GPON HomeGateways and Optical Network terminals Affected products include 1DT741 Converged Intelligent Terminal (G/EPON+IPTV), 2DT741 Converged Intelligent Terminal (G/EPON+IPTV), 3DT721-cb GPON uplink home gateway (GPON+2FE+1POTS), 4DT721-cb GPON Uplink Home Gateway (GPON ...
======================================================== Unauthenticated Stack Overflow in Multiple Gpon Devices ======================================================== contents:: Table Of Content Overview ======== Title:- StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals CVE-ID :- CVE-2018-19524 Author: Ka ...
======================================================== Unauthenticated Stack Overflow in Multiple Gpon Devices ======================================================== contents:: Table Of Content Overview ======== Title:- StackOverflow in Multiple Skyworth GPON HomeGateways and Optical Network terminals CVE-ID :- CVE-2018-19524 Author: Ka ...

Github Repositories

Welcome to Kaustubh security advisories This website will mainly for manageing advisories which i create on day to day basis and for My CVE Database CVE ID VENDOR ISSUE Reference CVE-2015-1437 ASUS XSS In Asus Router nvdnistgov/vuln/detail/CVE-2015-1437 CVE-2015-1614 WordPress XSRF(CSRF+XSS) nvdnistgov/vuln/detail/CVE-2015-1614 CVE-2015-2755 Word