1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Cisco Gateway Router Remote Code Execution Attack CVE-2017-11587

Attack: Cisco Gateway Router Remote Code Execution Attack CVE-2017-11587

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploits Cisco Residential Gateway routers which may compromise to execute arbitrary command on the affected system.

Additional Information

Cisco Residential Gateway routers are prone to a remote command-execution vulnerability because it fails to properly sanitize user-supplied input. Specifically, this issue affects the 'pingAddr' parameter to the 'waitPingqry.cgi' URI.

An attacker can exploit this issue to execute arbitrary command on the affected system. This may aid in further attacks.

Affected

  • Cisco Residential Gateway Routers
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube