CVE-2015-7288

CSL DualCom GPRS CS2300-R devices with firmware 1.25 through 3.53 allow remote attackers to modify the configuration via a command in an SMS message, as demonstrated by a "4 2" command.
References
Link Resource
http://www.kb.cert.org/vuls/id/428280 Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/BLUU-A3NQAL Third Party Advisory US Government Resource
http://cybergibbons.com/?p=2844 Exploit
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:csl_dualcom:gprs_cs2300-r_firmware:3.53:*:*:*:*:*:*:*
cpe:2.3:o:csl_dualcom:gprs_cs2300-r_firmware:1.25:*:*:*:*:*:*:*
cpe:2.3:h:csl_dualcom:gprs:cs2300-r:*:*:*:*:*:*:*

Information

Published : 2015-11-24 20:59

Updated : 2015-11-25 08:44


NVD link : CVE-2015-7288

Mitre link : CVE-2015-7288


JSON object : View

CWE
CWE-254

7PK - Security Features

Advertisement

dedicated server usa

Products Affected

csl_dualcom

  • gprs_cs2300-r_firmware
  • gprs