CVE-2009-1557

Cisco WVC54GCA - Cross-Site Scripting via next_file or this_file Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1557. PoCs published by pagvac.

AI-analyzed exploit summary This exploit demonstrates multiple XSS vulnerabilities in Linksys WVC54GCA cameras by injecting malicious scripts via unsanitized parameters. The PoC includes a JavaScript payload to steal admin credentials via XMLHttpRequest.

Description

Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML via the next_file parameter to (1) main.cgi, (2) img/main.cgi, or (3) adm/file.cgi; or (4) the this_file parameter to adm/file.cgi.

Exploits (1)

exploitdb WORKING POC VERIFIED

by pagvac · javascriptremotehardware

https://www.exploit-db.com/exploits/32955

View Code ZIP pw:eip

This exploit demonstrates multiple XSS vulnerabilities in Linksys WVC54GCA cameras by injecting malicious scripts via unsanitized parameters. The PoC includes a JavaScript payload to steal admin credentials via XMLHttpRequest.

Classification

Working Poc 95%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: Linksys WVC54GCA Wireless-G Internet Home Monitoring Camera (firmware 1.00R22, 1.00R24)

No auth needed

Prerequisites: Victim must visit a crafted URL or attacker-controlled page

MITRE ATT&CK