Home / os / winnt

Cayin Signage Media Player 3.0 Root Remote Command Injection

Posted on 05 June 2020

CAYIN SMP-xxxx suffers from an authenticated OS command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user through the NTP_Server_IP HTTP GET parameter in system.cgi and wizard_system.cgi pages.

 

TOP

Malware :

Exploits :