CVE-2013-7179

Published: Feb 4, 2014Modified: Apr 29, 2026

8.3

Vector

AV:A/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 6.5 / Impact: 10.0

Source: NVD

Description

The ping functionality in cgi-bin/diagnostic.cgi on Seowon Intech SWC-9100 routers allows remote attackers to execute arbitrary commands via shell metacharacters in the ping_ipaddr parameter.

Affected (1)

Products: Seowonintech: Swc 9100

Seowonintech

1 product

Swc 9100

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Seowonintech Swc 9100	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

http://secunia.com/advisories/56756

Source: cret@cert.org

http://www.kb.cert.org/vuls/id/431726

Source: cret@cert.org

Third Party AdvisoryUS Government Resource

http://secunia.com/advisories/56756

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/431726

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.