Vulnerability Details CVE-2014-100005
Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. Bx) with firmware before 2.17b02 allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator account or (2) enable remote management via a crafted configuration module to hedwig.cgi, (3) activate new configuration settings via a SETCFG,SAVE,ACTIVATE action to pigwidgeon.cgi, or (4) send a ping via a ping action to diagnostic.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.36
EPSS Ranking 96.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
Proposed Action
D-Link DIR-600 routers contain a cross-site request forgery (CSRF) vulnerability that allows an attacker to change router configurations by hijacking an existing administrator session.
Ransomware Campaign
Unknown
References
- http://resources.infosecinstitute.com/csrf-unauthorized-remote-admin-access/
- http://secunia.com/advisories/57304
- http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10018
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91794
- http://resources.infosecinstitute.com/csrf-unauthorized-remote-admin-access/
- http://secunia.com/advisories/57304
- http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10018
- https://exchange.xforce.ibmcloud.com/vulnerabilities/91794
Products affected by CVE-2014-100005
-
cpe:2.3:h:dlink:dir-600:-
-
cpe:2.3:o:dlink:dir-600_firmware:-
-
cpe:2.3:o:dlink:dir-600_firmware:2.16ww