Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2009/10/27 12:0 a.m.104 views

DD-WRT HTTP Daemon Arbitrary Command Execution

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'DD-WRT HTTP...

8.3CVSS0.6AI score0.82504EPSS
Exploits7
NVD
NVD
added 2009/08/14 3:16 p.m.27 views

CVE-2009-2765

httpd.c in httpd in the management GUI in DD-WRT 24 sp1, and other versions before build 12533, allows remote attackers to execute arbitrary commands via shell metacharacters in a request to a cgi-bin/ URI...

8.3CVSS7.5AI score0.82504EPSS
Exploits7References9
CVE
CVE
added 2009/08/14 3:0 p.m.101 views

CVE-2009-2765

The CVE-2009-2765 issue affects the DD-WRT HTTPd management GUI, where httpd.c in the HTTP daemon is vulnerable to shell metacharacter injection via requests to a CGI-bin URI. The vulnerability allows an unauthenticated remote attacker to execute arbitrary commands with root privileges on affecte...

8.3CVSS7.8AI score0.82504EPSS
Exploits7References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/07/23 12:0 a.m.214 views

DD-WRT HTTP Daemon Metacharacter Injection Remote Code Execution

The remote web server is vulnerable to a command injection attack that may allow an attacker to execute arbitrary commands on the remote server usually with root privileges. An attacker can exploit this flaw to take complete ownership of the remote device. C Tenable Network Security, Inc...

8.3CVSS8.5AI score0.82504EPSS
Exploits7References3
Circl
Circl
added 2009/07/20 12:0 a.m.13 views

CVE-2009-2765

creationtimestamp| type| source ---|---|--- 2009-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9209 2009-07-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10030 2010-07-07 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16856 2018-05-29...

8.3CVSS7.4AI score0.82504EPSS
Exploits7References6
exploitpack
exploitpack
added 2009/07/20 12:0 a.m.23 views

DD-WRT HTTP v24-SP1 - Command Injection

DD-WRT HTTP v24-SP1 - Command Injection $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...

7.8AI score0.82504EPSS
Exploits7
Rows per page
Query Builder