|
|||
Rule General Information |
---|
Release Date: | 2017-08-25 | |
Rule Name: | EXPLOIT QNAP Transcode Server Command Execution | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | An unauthenticated remote command injection vulnerability was found in QNAP NAS devices. The transcoding server listens on port 9251 by default and is vulnerable to command injection using the "rmfile" command. | |
Impact: | Remote command execution | |
Affected OS: | Linux | |
Reference: | https://www.exploitee.rs/index.php/QNAP_TS-131 msf |
|
Solutions |
---|
Update vendor's patch. |