CVE-2008-1243

Currently unrated 🤨

Key Information

Vendor: Linksys
Status: Wrt300n
Vendor: CVE Published:; 10 March 2008

Summary

Cross-site scripting (XSS) vulnerability on the Linksys WRT300N router with firmware 2.00.20, when Mozilla Firefox or Apple Safari is used, allows remote attackers to inject arbitrary web script or HTML via the dyndns_domain parameter to the default URI.

References

http://www.securityfocus.com/archive/1/489009/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.gnucitizen.org/projects/router-hacking-challenge/

x_refsource_MISC

http://code.bulix.org/cx46qa-65489

x_refsource_MISC

EPSS Score

3% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 10, 2008
Vulnerability Reserved
Mar 10, 2008

Collectors

NVD DatabaseMitre Database