A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command. An attacker-controllable string is improperly handled, allowing for a write-anything-anywhere scenario. This can be leveraged to obtain arbitrary code execution inside the teds_app binary, which runs with root privileges.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HMotorola Mtm5400
HWMotorolawszystkie wersjeMotorola Mtm5400 Firmware
OSMotorolawszystkie wersjeMotorola Mtm5500
HWMotorolawszystkie wersjeMotorola Mtm5500 Firmware
OSMotorolawszystkie wersje
Related vulnerabilities
The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environ...
The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count...
Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-...
Command injection w parametrze SaveSysLogParams routera Motorola MR2600
Command injection w parametrze SaveStaticRouteIPv4Params routera Motorola MR2600