Details of VAR-E-201806-0177

ID

VAR-E-201806-0177

CVE

cve_id:

CVE-2018-12706

Trust: 1.5

sources: PACKETSTORM: 148296 // EXPLOIT-DB: 44934

EDB ID

44934

TITLE

DIGISOL DG-BR4000NG - Buffer Overflow (PoC) - Hardware dos Exploit

Trust: 1.0

sources: EXPLOIT-DB: 44934

DESCRIPTION

DIGISOL DG-BR4000NG - Buffer Overflow (PoC). CVE-2018-12706 . dos exploit for Hardware platform

Trust: 1.0

sources: EXPLOIT-DB: 44934

AFFECTED PRODUCTS

vendor:

digisol

model:

dg-br4000ng

scope:

version:

Trust: 2.1

sources: PACKETSTORM: 148296 // EXPLOIT-DB: 44934 // EDBNET: 98422

EXPLOIT

# Exploit Title: DIGISOL DG-BR4000NG - Buffer Overflow (PoC)
# Date 2018-06-24
# Vendor Homepage† http://www.digisol.com
# Hardware Link httpswww.amazon.inDigisol-DG-BR4000NG-Wireless-Broadband-802-11ndpB00A19EHYK
# Version: DIGISOL DG-BR4000NG Wireless Router
# Category Hardware
# Exploit Author Adipta Basu
# Tested on Mac OS High Sierra
# CVE CVE-2018-12706

# Reproduction Steps

- Goto your Wifi Router Gateway [i.e http192.168.2.1]
- Go to -- General Setup -- Wireless -- Basic Settings
- Open BurpSuite
- Reload the Page
- Burp will capture the intercepts.
- Add a string of 500 ì0îs after the Authorization Basic string
- The router will restart.
- Refresh the page, and the whole web interface will be faulty.

Trust: 1.0

sources: EXPLOIT-DB: 44934

EXPLOIT LANGUAGE

txt

Trust: 1.0

sources: EXPLOIT-DB: 44934

PRICE

free

Trust: 1.0

sources: EXPLOIT-DB: 44934

TYPE

Buffer Overflow (PoC)

Trust: 1.6

sources: EXPLOIT-DB: 44934 // EDBNET: 98422

CREDITS

Adipta Basu

Trust: 1.0

sources: EXPLOIT-DB: 44934

EXTERNAL IDS

db:	EXPLOIT-DB	id:	44934	Trust: 1.6
db:	NVD	id:	CVE-2018-12706	Trust: 1.5
db:	EDBNET	id:	98422	Trust: 0.6
db:	PACKETSTORM	id:	148296	Trust: 0.5

sources: PACKETSTORM: 148296 // EXPLOIT-DB: 44934 // EDBNET: 98422

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2018-12706	Trust: 1.5
url:	https://www.exploit-db.com/exploits/44934/	Trust: 0.6

sources: PACKETSTORM: 148296 // EXPLOIT-DB: 44934 // EDBNET: 98422

SOURCES

db:	PACKETSTORM	id:	148296
db:	EXPLOIT-DB	id:	44934
db:	EDBNET	id:	98422

LAST UPDATE DATE

2022-07-27T09:15:03.375000+00:00

SOURCES RELEASE DATE

db:	PACKETSTORM	id:	148296	date:	2018-06-25T20:59:00
db:	EXPLOIT-DB	id:	44934	date:	2018-06-25T00:00:00
db:	EDBNET	id:	98422	date:	2018-06-25T00:00:00

tag:	exploit	Trust: 0.5
tag:	overflow	Trust: 0.5
tag:	proof of concept	Trust: 0.5

ID

CVE

EDB ID

TITLE

DESCRIPTION

AFFECTED PRODUCTS

EXPLOIT

EXPLOIT LANGUAGE

PRICE

TYPE

TAGS

CREDITS

EXTERNAL IDS

REFERENCES

SOURCES

LAST UPDATE DATE

SOURCES RELEASE DATE