Vulnerabilities > CVE-2017-17759 - Unspecified vulnerability in Conarc Ichannel

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

conarc

critical

exploit available

NVD

Published: 2017-12-19

Updated: 2024-11-21

Summary

Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web Connection HTTP service).

Vulnerable Configurations

Part	Description	Count
Application	Conarc Conarc Ichannel -	1

Exploit-Db

description	Conarc iChannel - Improper Access Restrictions. CVE-2017-17759. Webapps exploit for Multiple platform
file	exploits/multiple/webapps/43377.txt
id	EDB-ID:43377
last seen	2018-01-10
modified	2017-12-20
platform	multiple
port
published	2017-12-20
reporter	Exploit-DB
source	https://www.exploit-db.com/download/43377/
title	Conarc iChannel - Improper Access Restrictions
type	webapps

Summary

Vulnerable Configurations

Exploit-Db

References