Lucene search
MitreCVELIST:CVE-2008-6974HistoryAug 14, 2009 - 3:00 p.m.
CVE-2008-6974
2009-08-1415:00:00
mitre
www.cve.org
1
Multiple cross-site request forgery (CSRF) vulnerabilities in apply.cgi in DD-WRT 24 sp1 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary commands via the ping_ip parameter; (2) change the administrative credentials via the http_username and http_passwd parameters; (3) enable remote administration via the remote_management parameter; or (4) configure port forwarding via certain from, to, ip, and pro parameters.
Related
cve
cve
CVE-2008-6974
2009-08-14 15:16:27
nvd
nvd
CVE-2008-6974
2009-08-14 15:16:27
prion
prion
Cross site request forgery (csrf)
2009-08-14 15:16:00
exploitdb
exploitdb
DD-WRT v24-sp1 - Cross-Site Reference Forgery
2008-12-08 00:00:00
DD-WRT HTTPd Daemon/Service - Remote Command Execution
2009-07-20 00:00:00