CVE-2014-100005

CVSS 8 HIGHEPSS 42.4%● KEVCWE-352

In short

A D-Link router allows attackers to trick administrators into making unwanted changes, like creating fake admin accounts or turning on remote access, by getting them to visit a malicious website. This happens because the router doesn't properly verify that commands actually come from the administrator.

Technical detail

Multiple CSRF vulnerabilities in D-Link DIR-600 (rev. Bx) firmware <2.17b02 allow unauthenticated remote attackers to perform administrative actions (account creation, remote management enablement, configuration activation, diagnostic commands) via state-changing requests to hedwig.cgi, pigwidgeon.cgi, and diagnostic.php. Attack vector requires victim administrator to visit attacker-controlled content while authenticated to the router.

Summary generated and translated by AI from the official description.

Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with firmware before 2.17b02 allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator account or (2) enable remote management via a crafted configuration module to hedwig.cgi, (3) activate new configuration settings via a SETCFG,SAVE,ACTIVATE action to pigwidgeon.cgi, or (4) send a ping via a ping action to diagnostic.php.

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://resources.infosecinstitute.com/csrf-unauthorized-remote-admin-access/http://secunia.com/advisories/57304 http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10018 https://exchange.xforce.ibmcloud.com/vulnerabilities/91794 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2014-100005