module
Linksys WRT54GL apply.cgi Command Execution
| Disclosed | Created |
|---|---|
| Jan 18, 2013 | May 30, 2018 |
Disclosed
Jan 18, 2013
Created
May 30, 2018
Description
Some Linksys Routers are vulnerable to an authenticated OS command injection in
the Web Interface. Default credentials are admin/admin or admin/password. Since it
is a blind os command injection vulnerability, there is no output for the executed
command when using the cmd generic payload. A ping command against a controlled
system could be used for testing purposes. The user must be prudent when using this
module since it modifies the router configuration while exploitation, even when it
tries to restore previous values.
the Web Interface. Default credentials are admin/admin or admin/password. Since it
is a blind os command injection vulnerability, there is no output for the executed
command when using the cmd generic payload. A ping command against a controlled
system could be used for testing purposes. The user must be prudent when using this
module since it modifies the router configuration while exploitation, even when it
tries to restore previous values.
Authors
Platform
Linux,Unix
Architectures
cmd, mipsle
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.