Swisscom Centro Grande Remote Root

Discussion in 'News Aggregator' started by Packet Storm, 29 Apr 2015.

  1. Packet Storm

    Packet Storm Guest

    A vulnerability has been discovered that affects the certificate verification functions provided by the HNDS service found on the Centro Grande (ADB version) DSL routers of Swisscom. The flaw allows an attacker to have access to management functions that are normally reserved for the Swisscom support. Furthermore, this vulnerability combined with other vulnerabilities allow to completely compromise the Centro Grande (ADB) routers. Available Proof-of-Concept code enables a remote root shell on a victim's router.

    Continue reading...
     

Share This Page

Loading...