CVE-2008-7115

Belkin Wireless G Router F5D7632-4V6 - Unauthenticated Privilege Escalation via Direct CGI Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-7115. PoCs published by noensr.

AI-analyzed exploit summary This HTML-based exploit bypasses the web interface password protection of the Belkin wireless G router (F5D7632-4V6) with firmware 6.01.08 by submitting crafted POST requests to various CGI endpoints, allowing unauthorized configuration changes including DNS poisoning, password changes, and factory resets.

Description

The web interface to the Belkin Wireless G router and ADSL2 modem F5D7632-4V6 with firmware 6.01.08 allows remote attackers to bypass authentication and gain administrator privileges via a direct request to (1) statusprocess.exe, (2) system_all.exe, or (3) restore.exe in cgi-bin/. NOTE: the setup_dns.exe vector is already covered by CVE-2008-1244.

Exploits (1)

exploitdb WORKING POC VERIFIED

by noensr · htmlremotehardware

https://www.exploit-db.com/exploits/6305

View Code ZIP pw:eip

This HTML-based exploit bypasses the web interface password protection of the Belkin wireless G router (F5D7632-4V6) with firmware 6.01.08 by submitting crafted POST requests to various CGI endpoints, allowing unauthorized configuration changes including DNS poisoning, password changes, and factory resets.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Belkin wireless G router F5D7632-4V6 with firmware 6.01.08

No auth needed

Prerequisites: Network access to the router's web interface (typically 192.168.2.1) · Router must be using vulnerable firmware version

MITRE ATT&CK

T1110.001 - Password Guessing T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/6305

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/31665

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/44874

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1020747

Scores

EPSS 0.0411

EPSS Percentile 89.5%

Details

CWE

CWE-264

Status published

Products (2)

belkin/f5d7632-4 6.01.08

belkin/wireless_g_router

Published Aug 28, 2009

Tracked Since Feb 18, 2026