ID
VAR-201608-0490
TITLE
NETRUN VPN Internet Behavior Management Router Arbitrary File Read and Remote Command Execution Vulnerability
Trust: 0.6
DESCRIPTION
NetRun is currently the domestic network terminal equipment and application provider. NetRun products cover Internet access, secure VPN (virtual private network), online behavior management, community broadband access, professional traffic control, and billing management system. The NETRUNVPN Internet Behavior Management Router has arbitrary file read and remote command execution vulnerabilities under certain conditions. Remote attackers exploit vulnerabilities to obtain sensitive file information such as password files and remotely execute system commands.
Trust: 0.6
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | net run | model: | vpn internet behavior management router | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
EXTERNAL IDS
| db: | WOOYUN | id: | WOOYUN-2016-0221474 | Trust: 0.6 |
| db: | CNVD | id: | CNVD-2016-05900 | Trust: 0.6 |
REFERENCES
| url: | http://www.wooyun.org/bugs/wooyun-2016-0221474/ | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2016-05900 |
LAST UPDATE DATE
2022-05-17T01:55:52.242000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2016-05900 | date: | 2016-08-03T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2016-05900 | date: | 2016-08-03T00:00:00 |