[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] QNAP MusicStation/MalwareRemover Pre-Auth Root Remote Code Execution

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] QNAP MusicStation/MalwareRemover Pre-Auth Root Remote Code Execution
From: polict of Shielder via Fulldisclosure <fulldisclosure@xxxxxxxxxxxx>
Date: Thu, 27 May 2021 17:23:58 +0200

QNAP MusicStation (5M+ installs) and MalwareRemover (pre-installed and
"non-removable") official apps are affected by an arbitrary file upload
and a command injection vulnerabilities, leading to pre-auth remote
command execution with root privileges on the NAS.

QNAP has already released updates with patches in April.

The technical details are available at
https://www.shielder.it/advisories/qnap-musicstation-malwareremover-pre-auth-remote-code-execution/

-- 
polict
Research team director @ Shielder Srl
polict@xxxxxxxxxxx


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] KL-001-2021-007: CommScope Ruckus IoT Controller Undocumented Account
Next by Date: [FD] [KIS-2021-04] IPS Community Suite <= 4.5.4.2 (previewBlock) PHP Code Injection Vulnerability
Previous by thread: [FD] KL-001-2021-007: CommScope Ruckus IoT Controller Undocumented Account
Next by thread: [FD] [KIS-2021-04] IPS Community Suite <= 4.5.4.2 (previewBlock) PHP Code Injection Vulnerability
Index(es):
- Date
- Thread