CVE-2008-1244

EXPLOITED

Belkin F5D7230-4 <9.01.10 - Auth Bypass

Title source: llm

Exploitation Summary

CVE-2008-1244 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit.

AI-analyzed exploit summary This HTML-based exploit bypasses the web interface password protection of the Belkin F5D7632-4V6 wireless router by submitting crafted POST requests to various CGI scripts. It allows unauthorized modification of DNS settings, password changes, and other system configurations without authentication.

Description

cgi-bin/setup_dns.exe on the Belkin F5D7230-4 router with firmware 9.01.10 does not require authentication, which allows remote attackers to perform administrative actions, as demonstrated by changing a DNS server via the dns1_1, dns1_2, dns1_3, and dns1_4 parameters. NOTE: it was later reported that F5D7632-4V6 with firmware 6.01.08 is also affected.

Exploits (1)

exploitdb WORKING POC

htmlremotehardware

https://www.exploit-db.com/exploits/6305

View Code ZIP pw:eip

This HTML-based exploit bypasses the web interface password protection of the Belkin F5D7632-4V6 wireless router by submitting crafted POST requests to various CGI scripts. It allows unauthorized modification of DNS settings, password changes, and other system configurations without authentication.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Belkin F5D7632-4V6 with firmware 6.01.08

No auth needed

Prerequisites: Network access to the router's web interface (typically 192.168.2.1)

MITRE ATT&CK

T1110 - Brute Force T1078 - Valid Accounts

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/489009/100/0/threaded

Exploit x_refsource_misc

http://www.gnucitizen.org/projects/router-hacking-challenge/

Exploit x_refsource_misc

https://bugzilla.mozilla.org/show_bug.cgi?id=371598

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/41124

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/28319

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/29345

Scores

EPSS 0.0812

EPSS Percentile 92.4%

Details

VulnCheck KEV 2015-05-22

CWE

CWE-287

Status published

Products (1)

belkin/f5d7230-4

Published Mar 10, 2008

Tracked Since Feb 18, 2026