[Security] CVE-2017-9807 – OpenWebIf Vulnerability

Attention:

With the CVE number mentioned above a serious vulnerability in relation to the OpenWebIf has been reported. See CVE-2017-9807 for details. The vulnerability makes it possible to create, overwrite or change arbitrary files using a specially formulated web request. Every Enigma2 version with an installed OpenWebIf is impacted.

For those who still have their box open, connected to the internet without the use of a VPN: Please switch this off immediately, before your box is hacked!!!

The OpenWebIf team is working very hard to find a solution for this problem.


back to previous

Metadata
 
Modified
2017/06/24
Author
webmaster
Comments
none