QwikSec

Security Database

CVE

CWE

Training

CVE-2017-17759

Published: Dec 19, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web Connection HTTP service).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.information-paradox.net/2017/12/conarc-ichannel-unauthenticated.html

x_refsource_MISC

exploit

x_refsource_EXPLOIT-DB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.