CVE-2008-1247

critical

Description

The web interface on the Linksys WRT54g router with firmware 1.00.9 does not require credentials when invoking scripts, which allows remote attackers to perform arbitrary administrative actions via a direct request to (1) Advanced.tri, (2) AdvRoute.tri, (3) Basic.tri, (4) ctlog.tri, (5) ddns.tri, (6) dmz.tri, (7) factdefa.tri, (8) filter.tri, (9) fw.tri, (10) manage.tri, (11) ping.tri, (12) PortRange.tri, (13) ptrigger.tri, (14) qos.tri, (15) rstatus.tri, (16) tracert.tri, (17) vpn.tri, (18) WanMac.tri, (19) WBasic.tri, or (20) WFilter.tri. NOTE: the Security.tri vector is already covered by CVE-2006-5202.

References

https://www.exploit-db.com/exploits/5926

https://www.exploit-db.com/exploits/5313

https://kinqpinz.info/lib/wrt54g/own2.txt

https://kinqpinz.info/lib/wrt54g/

https://exchange.xforce.ibmcloud.com/vulnerabilities/41118

http://www.securityfocus.com/bid/28381

http://www.securityfocus.com/archive/1/489009/100/0/threaded

http://www.gnucitizen.org/projects/router-hacking-challenge/

http://secunia.com/advisories/29344

Details

Source: Mitre, NVD

Published: 2008-03-10

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.08246