# Author: Momen Eldawakhly (Cyber Guy) # Vendor: SeowonIntech # Product: SWC-5100W WIMAX # Version: Bootloader(1.18.19.0) , HW (0.0.7.0), FW(1.11.0.1 : 1.9.9.4) # Vulnerability: Authenticated OS Command Injection # Description: SWC-5100W WIMAX Bootloader(1.18.19.0) , HW (0.0.7.0), FW(1.11.0.1 : 1.9.9.4) is affected with authenticated OS Command Injection vulnerability known as Ballin' Mada allow attackers to takeover the system with root privilege by abusing doSystem() function. # References: http://www.seowonintech.co.kr/eng/main https://drive.google.com/drive/u/0/folders/1rCy23ixhmHxvmPAZEcIHn9svBOb70aMn https://usermanual.wiki/SEOWON-INTECH/SWC5100W