What is CVE-2015-2797?

CVE-2015-2797 is a vulnerability in Airties Air_5021, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2015-06-19.

Is CVE-2015-2797 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Airties Air_5021

CVE-2015-2797

Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT, 5453, 5444TT, 5443, 5442, 5343, 5342, 5341, and 5021 DSL modems with firmware 1.0.2.0 and earlier allows remote attackers to execute arbitrary code via a long string in t…

Vulnerability class: Buffer Overflow

EPSS: 0.874 (99.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

75355 (vdb-entry, x_refsource_BID)
37170 (Exploit, exploit, x_refsource_EXPLOIT-DB)
cve@mitre.org (Exploit, x_refsource_MISC)
36577 (Exploit, exploit, x_refsource_EXPLOIT-DB)
120335 (x_refsource_OSVDB, vdb-entry)

Frequently asked questions

What is CVE-2015-2797?: CVE-2015-2797 is a vulnerability in Airties Air_5021, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2015-06-19.
Is CVE-2015-2797 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.