CVE-2015-2797 Information

Description

Stack-based buffer overflow in AirTies Air 6372 5760 5750 5650TT 5453 5444TT 5443 5442 5343 5342 5341 and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login.

Reference

http://osvdb.org/show/osvdb/120335 http://www.bmicrosystems.com/blog/exploiting-the-airties-air-series/ http://www.securityfocus.com/bid/75355 https://www.exploit-db.com/exploits/36577/ https://www.exploit-db.com/exploits/37170/