8

CVE-2014-100005

Warnung
Exploit
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with firmware before 2.17b02 allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator account or (2) enable remote management via a crafted configuration module to hedwig.cgi, (3) activate new configuration settings via a SETCFG,SAVE,ACTIVATE action to pigwidgeon.cgi, or (4) send a ping via a ping action to diagnostic.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DlinkDir-600 Firmware Version <= 2.16ww
   DlinkDir-600 Version-

16.05.2024: CISA Known Exploited Vulnerabilities (KEV) Catalog

D-Link DIR-600 Router Cross-Site Request Forgery (CSRF) Vulnerability

Schwachstelle

D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change router configurations by hijacking an existing administrator session.

Beschreibung

This vulnerability affects legacy D-Link products. All associated hardware revisions have reached their end-of-life (EOL) or end-of-service (EOS) life cycle and should be retired and replaced per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 42.41% 0.985
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8 2.1 5.9
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P
134c704f-9b21-4f2e-91b3-4a467353bcc0 8 2.1 5.9
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-352 Cross-Site Request Forgery (CSRF)

The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.

http://resources.infosecinstitute.com/csrf-unauthorized-remote-admin-access/
Third Party Advisory
Exploit
http://secunia.com/advisories/57304
Broken Link
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10018
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/91794
Third Party Advisory
VDB Entry
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-100005
US Government Resource