Skip to content
This repository has been archived by the owner on Jan 16, 2022. It is now read-only.

qurbat/CVE-2020-8958

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
README.md
 
 
poc.py
 
 
CVE-2020-8958 Requirements Usage

README.md

A proof of concept for CVE-2020-8958 written in Python. The script will return the contents of /etc/passwd if successful.

CVE-2020-8958

Guangzhou 1GE ONU V2801RW 1.9.1-181203 through 2.9.0-181024 and V2804RGW 1.9.1-181203 through 2.9.0-181024 devices allow remote attackers to execute arbitrary OS commands via shell metacharacters in the boaform/admin/formPing Dest IP Address field.

Requirements

  • Python 3.X
  • bs4

Usage

python poc.py <IP_ADDR>

About

Proof of concept for arbitrary OS command execution on Guangzhou/V-SOL 1GE ONU devices (CVE-2020-8958)

Topics

gpon

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

2 forks
Report repository

Languages