CVE-2009-1561

Cisco WRT54GC - Cross-Site Request Forgery via administration.cgi

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2009-1561. PoCs published by Gabriel Lima.

AI-analyzed exploit summary This exploit leverages an authentication bypass vulnerability in the Linksys WRT54GC router by submitting a form to change the administrator password without requiring prior authentication. The JavaScript automatically submits the form to reset the password to '12345'.

Description

Cross-site request forgery (CSRF) vulnerability in administration.cgi on the Cisco Linksys WRT54GC router with firmware 1.05.7 allows remote attackers to hijack the intranet connectivity of arbitrary users for requests that change the administrator password via the sysPasswd and sysConfirmPasswd parameters.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gabriel Lima · htmlremotehardware

https://www.exploit-db.com/exploits/32931

View Code ZIP pw:eip

This exploit leverages an authentication bypass vulnerability in the Linksys WRT54GC router by submitting a form to change the administrator password without requiring prior authentication. The JavaScript automatically submits the form to reset the password to '12345'.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Linksys WRT54GC firmware 1.05.7

No auth needed

Prerequisites: Network access to the router's administration interface · Knowledge of the router's IP address

MITRE ATT&CK