Lucene search
PRIOn knowledge basePRION:CVE-2019-3929HistoryApr 30, 2019 - 9:29 p.m.
Command injection
2019-04-3021:29:00
PRIOn knowledge base
www.prio-n.com
3
The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 firmware 2.0.3.4, Teq AV IT WIPS710 firmware 1.1.0.7, SHARP PN-L703WA firmware 1.4.2.3, Optoma WPS-Pro firmware 1.0.0.5, Blackbox HD WPS firmware 1.0.0.5, InFocus LiteShow3 firmware 1.0.16, and InFocus LiteShow4 2.0.0.7 are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root.
References
Related
cisa_kev
cisa_kev
Crestron Multiple Products Command Injection Vulnerability
2022-04-15 00:00:00
nuclei
nuclei
Barco/AWIND OEM Presentation Platform - Remote Command Injection
2021-11-05 15:28:18
packetstorm
packetstorm
Barco WePresent file_transfer.cgi Command Injection
2020-01-14 00:00:00
githubexploit
githubexploit
Exploit for OS Command Injection in Crestron Am-100 Firmware
2019-09-17 16:23:04
zdt
zdt
attackerkb
attackerkb
CVE-2019-3929
2019-04-30 00:00:00
cvelist
cvelist
CVE-2019-3929
2019-04-30 20:21:09
cve
cve
CVE-2019-3929
2019-04-30 21:29:00
exploitpack
exploitpack
checkpoint_advisories
checkpoint_advisories
Barco EOM Presentation platform Remote Code Execution (CVE-2019-3929)
2019-05-12 00:00:00
nvd
nvd
CVE-2019-3929
2019-04-30 21:29:00
exploitdb
exploitdb
threatpost
threatpost
Critical Flaws Found in Eight Wireless Presentation Systems
2019-05-02 21:15:34