Back to directory

WRITEUP #499

Hunting for Unauthenticated n-days in Asus Routers

RCEFormat string vulnerabilityReverse engineeringPatch diffing

by@Th3Zer0(TheZero)

Program

Asus

Published

Jan 30, 2024

Added to HackDex

Feb 1, 2024

Read Full Writeuphttps://www.shielder.com/blog/2024/01/hunting-for-~~un~~authenticated-n-days-in-asus-routers/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat