CVE-2008-4133

D-Link DIR-100 - Web Proxy Filter Bypass via Large URL

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4133. PoCs published by Marc Ruef.

AI-analyzed exploit summary The provided text describes a vulnerability in D-Link DIR-100 devices (firmware 1.12) that allows attackers to bypass security restrictions and access blocked sites. However, no actual exploit code is included, only a reference to a URL pattern.

Description

The web proxy service on the D-Link DIR-100 with firmware 1.12 and earlier does not properly filter web requests with large URLs, which allows remote attackers to bypass web restriction filters.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Marc Ruef · textremotehardware

https://www.exploit-db.com/exploits/32336

View Code ZIP pw:eip

The provided text describes a vulnerability in D-Link DIR-100 devices (firmware 1.12) that allows attackers to bypass security restrictions and access blocked sites. However, no actual exploit code is included, only a reference to a URL pattern.

Classification

Writeup 80%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Theoretical

Target: D-Link DIR-100 firmware 1.12

No auth needed

Prerequisites: Network access to the vulnerable device

MITRE ATT&CK