AVM FRITZ!OS before 6.30 extracts the contents of firmware updates before verifying their cryptographic signature, which allows remote attackers to create symlinks or overwrite critical files, and consequently execute arbitrary code, via a crafted firmware image.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-01-08T20:00:00
Updated: 2024-08-06T13:33:11.947Z
Reserved: 2014-11-14T00:00:00
Link: CVE-2014-8886
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-01-08T20:59:00.123
Modified: 2024-11-21T02:19:53.623
Link: CVE-2014-8886
Redhat
No data.