DD-WRT HTTP Daemon Metacharacter Injection Remote Code Execution

High Nessus Plugin ID 40353


An attacker can execute arbitrary code on the remote router.


The remote web server is vulnerable to a command injection attack that may allow an attacker to execute arbitrary commands on the remote server (usually with root privileges).
An attacker can exploit this flaw to take complete ownership of the remote device.


Unknown at this time.

See Also



Plugin Details

Severity: High

ID: 40353

File Name: ddwrt_cgibin_cmd_exec.nasl

Version: $Revision: 1.17 $

Type: remote

Family: Web Servers

Published: 2009/07/23

Modified: 2016/05/19

Dependencies: 10107

Risk Information

Risk Factor: High


Base Score: 8.3

Temporal Score: 6.5

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Vulnerability Publication Date: 2009/07/20

Exploitable With

Metasploit (DD-WRT HTTP Daemon Arbitrary Command Execution)

Reference Information

CVE: CVE-2009-2765

BID: 35742

OSVDB: 55990

EDB-ID: 9209

CWE: 20