This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.
A software development kit running on the remote device is affected by
a remote code execution vulnerability.
According to its banner, the Realtek Software Development Kit is
running on the remote device. It is, therefore, affected by a flaw in
the miniigd SOAP service due to a failure to properly sanitize user
input when handling NewInternalClient requests. An unauthenticated,
remote attacker, using a crafted request, can exploit this to execute
arbitrary code with root level privileges.
See also :
There is currently no fix available. As a workaround, restrict access
to vulnerable devices.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 9.5
Public Exploit Available : true