all InfoSec news
Vulnerability Spotlight: OS command injection, directory traversal and other vulnerabilities found in Siretta Quartz-Gold and FreshTomato
Malware Analysis, News and Indicators - Latest topics malware.news
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities.
Cisco Talos recently discovered several vulnerabilities in the Siretta Quartz-Gold router. Talos also discovered vulnerabilities in FreshTomato while investigating the Siretta router.
The Siretta Quartz-Gold is an industrial cellular router with several features and services, such as: SSH, UPNP, VPN, SNMP and many others. FreshTomato is an open source firmware based on Linux. The firmware offers several features for Broadcom-based routers.
Quartz-Gold Vulnerabilities
Several OS command injection vulnerabilities were found which could …
cellular cisco cisco talos command command injection directory directory traversal features firmware industrial injection linux open source router services snmp spotlight ssh talos upnp vpn vulnerabilities vulnerability vulnerability spotlight