Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7115

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-7115
Last Modified 28 Aug 2009 12:00:00
Published 28 Aug 2009 11:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7115

Summary

The web interface to the Belkin Wireless G router and ADSL2 modem F5D7632-4V6 with firmware 6.01.08 allows remote attackers to bypass authentication and gain administrator privileges via a direct request to (1) statusprocess.exe, (2) system_all.exe, or (3) restore.exe in cgi-bin/. NOTE: the setup_dns.exe vector is already covered by CVE-2008-1244.

Vulnerable Systems


References

XF - belkin-router-interface-security-bypass(44874)

SECTRACK - 1020747

MILW0RM - 6305

SECUNIA - 31665


Last Updated: 27 May 2016 10:49:28