CVE-2018-19524

Published: Mar 21, 2019Modified: Nov 21, 2024

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

An issue was discovered on Shenzhen Skyworth DT741 Converged Intelligent Terminal (G/EPON+IPTV) SDOTBGN1, DT721-cb SDOTBGN1, and DT741-cb SDOTBGN1 devices. A long password to the Web_passwd function allows remote attackers to cause a denial of service (segmentation fault) or achieve unauthenticated remote code execution because of control of registers S0 through S4 and T4 through T7.

Affected (3)

Products: Skyworthdigital: Dt740 Firmware, Dt721 Cb Firmware, Dt741 Cb Firmware

Skyworthdigital

3 products

Dt721 Cb Firmware

Dt741 Cb Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Skyworthdigital Dt740 Firmware	Version sdotbgn1

Running on/with	Platform Versions
Skyworthdigital Dt740	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Skyworthdigital Dt721 Cb Firmware	Version sdotbgn1

Running on/with	Platform Versions
Skyworthdigital Dt721 Cb	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Skyworthdigital Dt741 Cb Firmware	Version sdotbgn1

Running on/with	Platform Versions
Skyworthdigital Dt741 Cb	All versions

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (12)

http://packetstormsecurity.com/files/151608/Skyworth-GPON-HomeGateways-Optical-Network-Stack-Overflow.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2019/Feb/30

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

https://s3curityb3ast.github.io/KSA-Dev-001.md

Source: cve@mitre.org

https://seclists.org/bugtraq/2019/Feb/21

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

https://www.breakthesec.com/2019/02/cve-2018-19524-stack-overflow-in.html

Source: cve@mitre.org

https://www.exploit-db.com/exploits/46358/

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/151608/Skyworth-GPON-HomeGateways-Optical-Network-Stack-Overflow.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2019/Feb/30

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party Advisory

https://s3curityb3ast.github.io/KSA-Dev-001.md

Source: af854a3a-2127-422b-91ae-364da2661108

https://seclists.org/bugtraq/2019/Feb/21

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party Advisory

https://www.breakthesec.com/2019/02/cve-2018-19524-stack-overflow-in.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/46358/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.