vendor:
F5D8233-4 Wireless N Router
by:
SecurityFocus
8.8
CVSS
HIGH
Lack of Authentication
287
CWE
Product Name: F5D8233-4 Wireless N Router
Affected Version From: Belkin F5D8233-4
Affected Version To: Belkin F5D8233-4
Patch Exists: YES
Related CWE: CVE-2008-4456
CPE: o:belkin:f5d8233-4_wireless_n_router
Metasploit:
https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2009-1289/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2010-0110/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2009-1461/, https://www.rapid7.com/db/vulnerabilities/centos_linux-cve-2008-4456/, https://www.rapid7.com/db/vulnerabilities/apple-osx-mysql-cve-2008-4456/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2008-4456/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2008-4456/
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: None
2008
Belkin F5D8233-4 Wireless N Router Multiple Vulnerabilities
Attackers can exploit the lack of authentication when users access specific administration scripts in Belkin F5D8233-4 Wireless N Router to perform administrative functions without authorization. Attackers can enable remote management on port 8080, restore the router's default factory settings, reboot the router, and log in with the default password.
Mitigation:
Users should ensure that authentication is enabled for all administrative functions.
