After a reverse engineering of the firmware, I found some interesting vulnerabilities that affects the latest version of the Synology DSM:
- Remote file download
- Command injection
- Partial remote content download
- Cross-site scripting
More information here: http://www.andreafabrizi.it/?exploits:dsm
No comments:
Post a Comment