Sign-up

ID

VAR-201506-0118


CVE

CVE-2015-2797


TITLE

plural AirTies Air Product firmware stack-based buffer overflow vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2015-003224

DESCRIPTION

Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in the redirect parameter to cgi-bin/login. Airties Air 6372 and others are wireless modem products from Airties of Turkey. AirTiesAir 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, 5021 DSL modems using firmware version 1.0.2.0 and earlier were affected by this vulnerability. Multiple AirTies Air products are prone to a stack-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. A remote attacker may exploit this issue to execute arbitrary code in the context of the affected device. Failed attempts will likely cause a denial-of-service condition

Trust: 2.61

sources: NVD: CVE-2015-2797 // JVNDB: JVNDB-2015-003224 // CNVD: CNVD-2015-03975 // BID: 75355 // VULHUB: VHN-80758 // VULMON: CVE-2015-2797

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-03975

AFFECTED PRODUCTS

vendor:airtiesmodel:airscope:lteversion:1.0.2.0

Trust: 1.8

vendor:airtiesmodel:air 5650ttscope: - version: -

Trust: 1.1

vendor:airtiesmodel:air 5444ttscope: - version: -

Trust: 1.1

vendor:airtiesmodel:airscope:eqversion:1.0.2.0

Trust: 0.9

vendor:airtiesmodel:air 5021scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5341scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5342scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5343scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5442scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5443scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5453scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5750scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 5760scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air 6372scope: - version: -

Trust: 0.8

vendor:airtiesmodel:air6372scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5760scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5750scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5650ttscope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5453scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5444ttscope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5443scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5442scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5343scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5342scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5341scope: - version: -

Trust: 0.6

vendor:airtiesmodel:air5021scope: - version: -

Trust: 0.6

vendor:airtiesmodel:airscope:eqversion:6372

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5760

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5750

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5453

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5443

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5442

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5343

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5342

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5341

Trust: 0.3

vendor:airtiesmodel:airscope:eqversion:5021

Trust: 0.3

sources: CNVD: CNVD-2015-03975 // BID: 75355 // JVNDB: JVNDB-2015-003224 // CNNVD: CNNVD-201506-339 // NVD: CVE-2015-2797

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-2797
value: HIGH

Trust: 1.0

NVD: CVE-2015-2797
value: HIGH

Trust: 0.8

CNVD: CNVD-2015-03975
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201506-339
value: CRITICAL

Trust: 0.6

VULHUB: VHN-80758
value: HIGH

Trust: 0.1

VULMON: CVE-2015-2797
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2015-2797
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

CNVD: CNVD-2015-03975
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-80758
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-03975 // VULHUB: VHN-80758 // VULMON: CVE-2015-2797 // JVNDB: JVNDB-2015-003224 // CNNVD: CNNVD-201506-339 // NVD: CVE-2015-2797

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-80758 // JVNDB: JVNDB-2015-003224 // NVD: CVE-2015-2797

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201506-339

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201506-339

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-003224

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-80758 // 
            
            
            
            VULMON: CVE-2015-2797

PATCH
title:Top Pageurl:http://www.airties.com/
Trust: 0.8
title:having-fun-with-qilingurl:https://github.com/echel0nn/having-fun-with-qiling 
Trust: 0.1
sources:
            
            
            VULMON: CVE-2015-2797 // 
            
            
            
            JVNDB: JVNDB-2015-003224

EXTERNAL IDS
db:NVDid:CVE-2015-2797
Trust: 3.5
db:BIDid:75355
Trust: 2.1
db:EXPLOIT-DBid:36577
Trust: 1.8
db:EXPLOIT-DBid:37170
Trust: 1.8
db:OSVDBid:120335
Trust: 1.8
db:JVNDBid:JVNDB-2015-003224
Trust: 0.8
db:CNNVDid:CNNVD-201506-339
Trust: 0.7
db:CNVDid:CNVD-2015-03975
Trust: 0.6
db:VULHUBid:VHN-80758
Trust: 0.1
db:VULMONid:CVE-2015-2797
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-03975 // 
            
            
            
            VULHUB: VHN-80758 // 
            
            
            
            VULMON: CVE-2015-2797 // 
            
            
            
            BID: 75355 // 
            
            
            
            JVNDB: JVNDB-2015-003224 // 
            
            
            
            CNNVD: CNNVD-201506-339 // 
            
            
            
            NVD: CVE-2015-2797

REFERENCES
url:http://www.bmicrosystems.com/blog/exploiting-the-airties-air-series/
Trust: 3.5
url:https://www.exploit-db.com/exploits/37170/
Trust: 1.9
url:https://www.exploit-db.com/exploits/36577/
Trust: 1.8
url:http://osvdb.org/show/osvdb/120335
Trust: 1.8
url:http://www.securityfocus.com/bid/75355
Trust: 1.3
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-2797
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-2797
Trust: 0.8
url:http://www.airties.com/
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/119.html
Trust: 0.1
url:https://github.com/echel0nn/having-fun-with-qiling
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://www.rapid7.com/db/modules/exploit/linux/http/airties_login_cgi_bof
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-03975 // 
            
            
            
            VULHUB: VHN-80758 // 
            
            
            
            VULMON: CVE-2015-2797 // 
            
            
            
            BID: 75355 // 
            
            
            
            JVNDB: JVNDB-2015-003224 // 
            
            
            
            CNNVD: CNNVD-201506-339 // 
            
            
            
            NVD: CVE-2015-2797

CREDITS
Batuhan Burakcin
Trust: 0.3
sources:
            
            
            BID: 75355

SOURCES
db:CNVDid:CNVD-2015-03975
db:VULHUBid:VHN-80758
db:VULMONid:CVE-2015-2797
db:BIDid:75355
db:JVNDBid:JVNDB-2015-003224
db:CNNVDid:CNNVD-201506-339
db:NVDid:CVE-2015-2797

LAST UPDATE DATE
2025-04-13T23:26:45.337000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-03975date:2015-06-25T00:00:00
db:VULHUBid:VHN-80758date:2016-12-03T00:00:00
db:VULMONid:CVE-2015-2797date:2016-12-03T00:00:00
db:BIDid:75355date:2015-06-23T00:00:00
db:JVNDBid:JVNDB-2015-003224date:2015-06-23T00:00:00
db:CNNVDid:CNNVD-201506-339date:2015-06-23T00:00:00
db:NVDid:CVE-2015-2797date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-03975date:2015-06-25T00:00:00
db:VULHUBid:VHN-80758date:2015-06-19T00:00:00
db:VULMONid:CVE-2015-2797date:2015-06-19T00:00:00
db:BIDid:75355date:2015-06-23T00:00:00
db:JVNDBid:JVNDB-2015-003224date:2015-06-23T00:00:00
db:CNNVDid:CNNVD-201506-339date:2015-06-23T00:00:00
db:NVDid:CVE-2015-2797date:2015-06-19T14:59:00.067