Grandstream HT800 series firmware version 1.0.17.5 and below is vulnerable to CPU exhaustion due to an infinite loop in the TR-069 service. Unauthenticated remote attackers can trigger this case by sending a one character TCP message to the TR-069 service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grandstream ht801_firmware |
||
grandstream ht802_firmware |
||
grandstream ht812_firmware |
||
grandstream ht814_firmware |
||
grandstream ht818_firmware |
||
grandstream ht813_firmware |