Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2008-6975

Published: 14/08/2009 Updated: 29/09/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 690
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Dd-wrt

Vulnerability Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in apply.cgi in DD-WRT 24 sp2 allow remote malicious users to hijack the authentication of administrators for requests that (1) execute arbitrary commands via the ping_ip parameter; (2) change the administrative credentials via the http_username and http_passwd parameters; (3) enable remote administration via the remote_management parameter; or (4) configure port forwarding via certain from, to, ip, and pro parameters. NOTE: This issue reportedly exists because of a "weak ... anti-CSRF fix" implemented in 24 sp2.

Vulnerable Product Search on Vulmon Subscribe to Product

dd-wrt dd-wrt 24

Exploits

Exploit DB: DD-WRT v24-sp1 - Cross-Site Reference Forgery
Remote root dd-wrt -------------------------------------------------------------------------------- Written by Michael Brooks Special thanks to str0ke Exploits tested on the newist stable version: Firmware: DD-WRT v24-sp1 (07/27/08) micro Product Homepage: dd-wrtcom/ Impact: 1)Remote root command execuiton /bin/sh 2)Change web administra ...
Exploit DB: DD-WRT HTTPd Daemon/Service - Remote Command Execution
This is a remote root vulnerability in DD-WRT's httpd server The bug exists at the latest 24 sp1 version of the firmware The problem is due to many bugs and bad software design decisions Here is part of httpdc: 859 if (containsstring(file, "cgi-bin")) { 860 861 auth_fail = 0; 862 if (!do_auth 86 ...

References

CWE-352http://www.dd-wrt.com/phpBB2/viewtopic.php?t=55173http://www.securityfocus.com/archive/1/499119http://www.securityfocus.com/archive/1/499135http://www.securityfocus.com/archive/1/499024https://www.exploit-db.com/exploits/9209https://nvd.nist.govhttps://www.exploit-db.com/exploits/7389/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook