CVE-2016-9496

Summary

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://[ip]/com/gatewayreset or http://[ip]/cgi/reboot.bin to cause the modem to reboot.

Affected Software

VendorProductVersion RangeStatus
Hughes Satellite ModemHN7740SN/Aunknown
Hughes Satellite ModemDW7000N/Aunknown
Hughes Satellite ModemHN7000S/SMN/Aunknown

Weaknesses

  • CWE-306: CWE-306

ADP Enrichment

CVE Program Container

Additional References

References