Main_Analysis_Content.asp in ASUS DSL-N12E_C1 1.1.2.3_345 is prone to Authenticated Remote Command Execution, which allows a remote attacker to execute arbitrary OS commands via service parameters, such as shell metacharacters in the destIP parameter of a cmdMethod=ping request.
CPE | Name | Operator | Version |
---|---|---|---|
dsl-n12e_c1_firmware | eq | 1.1.23345 |