CSRF in DD-WRT firmware
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2012-6297 |
| CWE-ID | CWE-352 |
| Exploitation vector | Network |
| Public exploit | Public exploit code for vulnerability #1 is available. |
| Vulnerable software Subscribe |
DD-WRT Hardware solutions / Firmware |
| Vendor | dd-wrt.com |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Cross-site request forgery
EUVDB-ID: #VU1182
Risk: Medium
CVSSv3.1: 4.5 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C]
CVE-ID: CVE-2012-6297
CWE-ID:
CWE-352 - Cross-Site Request Forgery (CSRF)
Exploit availability: No
Description
A remote attacker can perform CSRF attacks.
The vulnerability exists due to improper validation of HTTP request origin when performing certain actions over router’s web interface. A remote unauthenticated attacker can create a specially crafted web page, trick the victim to visit that webpage and execute arbitrary commands on vulnerable device.
Successful exploitation of this vulnerability may allow to compromise vulnerable device, but requires that the victim is logged-in to the device.
MitigationUpdate your router to the latest firmware version.
Vulnerable software versionsDD-WRT: 24 - 24sp2
External linkshttp://seclists.org/fulldisclosure/2013/Oct/241
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
