| ID | 46083 |
| Created | May 24, 2018 |
| Updated | Jan 31, 2022 |
| Outbreak Alert | Router Malware Attack |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Linux, Other |
| Affected App | Other |
Legend
| Active/Available |
|
| InActive/Not Available |
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2022-02-01 | 19.251 | Sig Added |
| 2020-07-09 | 15.882 | Sig Added |
| 2019-02-11 | 14.548 | Sig Added |
| 2018-10-04 | 13.464 | Sig Added |
click on each chart to view data in detail.
[[threatName]]
Refine Search
Threat Encyclopedia
Dasan.GPON.Remote.Code.Execution
Description
This indicates an attack attempt against a Remote Code Execution vulnerability in Dasan GPON.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted request.
Affected Products
ZNID-GPON-25xx and certain H640-series ONTs
Impact
Device Compromise: Remote attackers can gain control of vulnerable devices.
Recommended Actions
Currently no official patch, you can patch it here
https://www.vpnmentor.com/tools/gpon-router-antidote-patch/
✖