Buffer Overflow Vulnerability in MiniHttpd of Belkin N750 Router
CVE-2014-1635

Currently unrated

Key Information:

Vendor: Belkin
Status: N750 Wireless Router Firmware; N750 Wireless Router
Vendor: CVE Published:; 12 November 2014

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 78%

What is CVE-2014-1635?

A buffer overflow vulnerability exists in the MiniHttpd component of Belkin N750 Router. This flaw can be exploited by remote attackers who send a specially crafted request with an excessively long string in the 'jump' parameter. By exploiting this vulnerability, an attacker could execute arbitrary code on the device, potentially leading to unauthorized access and control over the router. It is crucial for users to update their firmware to mitigate this risk and secure their network devices.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

Metasploit exploit module for CVE-2014-1635
Created by Rapid7

References

https://labs.integrity.pt/articles/from-0-day-to-exploit-...

x_refsource_MISC

http://www.exploit-db.com/exploits/35184

exploitx_refsource_EXPLOIT-DB

http://www.belkin.com/us/support-article?articleNum=4831

x_refsource_CONFIRM

EPSS Score

78% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Mar 10, 2015
👾
Exploit known to exist
Mar 10, 2015
Vulnerability published
Nov 12, 2014
Vulnerability Reserved
Jan 22, 2014