Menu
What's new
By:
Filters Better Search

CVE-2016-3116 - Dropbear SSH xauth injection

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Vulnerable, but not a problem. You need to be authenticated to exploit this, which means you need to have the router's admin password anyway, since it's the only SSH user.

There's also no xauth command on the firmware.
 
You must log in or register to reply here.
Similar threads
Thread starter Title Forum Replies Date
RMerlin CVE 2023-50868 and CVE 2023-50387 in dnsmasq when DNSSEC is enabled Asuswrt-Merlin 30
RMerlin Asuswrt-Merlin is NOT affected by CVE-2023-38545 Asuswrt-Merlin 11
T Merlin Firmware and CVE\Security Patches Asuswrt-Merlin 7

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 587 (members: 22, guests: 565)
Top