CVE-2015-0932
published 2015-04-05CVE-2015-0932: The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices…
PriorityP260critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
5.59%
91.9th percentile
The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync sessions, which allows remote attackers to read or write to arbitrary files via TCP traffic on port 873.
Detection & IOCsextracted from sources · hover to see the quote
- →ANTlabs InnGate devices expose rsync (TCP/873) without authentication, allowing unauthenticated remote read/write of arbitrary files. Monitor for unauthenticated rsync sessions to/from InnGate devices on TCP port 873. ↗
- ·Affected devices include ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G. The vulnerability is the absence of authentication on the rsync daemon, not a software flaw requiring a patch version check. ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
http://blog.cylance.com/spear-team-cve-2015-0932http://www.antlabs.com/index.php?option=com_content&view=article&id=195:rsync-remote-file-system-access-vulnerability-cve-2015-0932&catid=54:advisories&Itemid=133http://www.kb.cert.org/vuls/id/930956http://www.wired.com/2015/03/big-vulnerability-hotel-wi-fi-router-puts-guests-risk/http://blog.cylance.com/spear-team-cve-2015-0932http://www.antlabs.com/index.php?option=com_content&view=article&id=195:rsync-remote-file-system-access-vulnerability-cve-2015-0932&catid=54:advisories&Itemid=133http://www.kb.cert.org/vuls/id/930956http://www.wired.com/2015/03/big-vulnerability-hotel-wi-fi-router-puts-guests-risk/
2015-04-05
Published