CVE-2008-0228

Currently unrated

Key Information:

Vendor
Linksys
Status
Wrt54gl
Vendor
CVE Published:
10 January 2008

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC

Summary

Cross-site request forgery (CSRF) vulnerability in apply.cgi in the Linksys WRT54GL Wireless-G Broadband Router with firmware 4.30.9 allows remote attackers to perform actions as administrators.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

TWSL2011-007_iOS_code_workaround
Created by SpiderLabs

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/39502
vdb-entryx_refsource_XF
http://securityreason.com/securityalert/3534
third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/28364
third-party-advisoryx_refsource_SECUNIA

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.