AVM FRITZ!OS before 6.30 extracts the contents of firmware updates before verifying their cryptographic signature, which allows remote attackers to create symlinks or overwrite critical files, and consequently execute arbitrary code, via a crafted firmware image.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2016-01-08T20:00:00

Updated: 2024-08-06T13:33:11.947Z

Reserved: 2014-11-14T00:00:00

Link: CVE-2014-8886

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2016-01-08T20:59:00.123

Modified: 2024-11-21T02:19:53.623

Link: CVE-2014-8886

cve-icon Redhat

No data.