Infomir Ministra TV Platform is prone to multiple security vulnerabilities.
Successfully exploiting these issues will allow attackers to execute arbitrary code on the device, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, bypass security restrictions and bypass authentication mechanism.
Infomir Ministra TV Platform versions prior to 5.4.1 are vulnerable.
Information
Exploit
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.
References:
- Critical Flaws Found in Widely Used IPTV Software for Online Streaming Services (The Hacker News)
- MINISTRA TV PLATFORM 5.4.1 (Infomir)
- Ministra TV Platform Home Page (Infomir)
- We Decide What You See: Remote Code Execution on a Major IPTV Platform (Check Point)