CVE-2014-125001 Information

Description

A vulnerability classified as critical has been found in Cardo Systems Scala Rider Q3. Affected is the file /cardo/api of the Cardo-Updater. Unauthenticated remote code execution with root permissions is possible. Firewalling or disabling the service is recommended.

Reference

https://vuldb.com/?id.13428 http://www.remote-exploit.org/archives/2014/06/03/ride_with_the_devil/