CVE-2014-1635

EXPLOITED

Belkin N750 Router <F9K1103_WW_1.10.17m - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2014-1635 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 3 public exploits from researchers including Marco Vaz, including a Metasploit module exploits/linux/http/belkin_login_bof.

AI-analyzed exploit summary This exploit leverages a buffer overflow in the Belkin N750 router's guest network web interface via the 'jump' parameter in a POST request to '/login.cgi'. It injects a command to start a telnet daemon, granting unauthenticated root access.

Description

Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103_WW_1.10.17m allows remote attackers to execute arbitrary code via a long string in the jump parameter.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Marco Vaz · pythonremotehardware
https://www.exploit-db.com/exploits/35184

This exploit leverages a buffer overflow in the Belkin N750 router's guest network web interface via the 'jump' parameter in a POST request to '/login.cgi'. It injects a command to start a telnet daemon, granting unauthenticated root access.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Belkin N750 DB Wi-Fi Dual-Band N+ Gigabit Router with firmware F9K1103_WW_1.10.16m
No auth needed
Prerequisites: Network access to the router's guest interface · Router running vulnerable firmware
devstral-2 · analyzed Feb 16, 2026 Full analysis →
vulncheck_xdb WORKING POC
remote
https://github.com/threat9/routersploit

This repository contains the RouterSploit framework, an exploitation toolkit for embedded devices, including exploits, scanners, and credential testing modules. The framework is designed to test and exploit vulnerabilities in routers and other embedded systems.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Moderate
Reliability
Reliable
Target: Embedded devices (routers, cameras, etc.)
No auth needed
Prerequisites: Python 3.6+ · requests · paramiko · pysnmp · pycrypto
devstral-2 · analyzed Feb 25, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/belkin_login_bof.rb

This Metasploit module exploits a buffer overflow vulnerability in Belkin Play N750 routers via a malformed HTTP POST request to /login.cgi with an overly long 'jump' parameter. It achieves remote code execution by leveraging a cmdstager with an echo-based payload delivery mechanism.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Belkin Play N750 DB Wireless Dual-Band N+ Router, F9K1103, firmware 1.10.16.m
No auth needed
Prerequisites: Network access to the target device · Target device running vulnerable firmware version
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/35184
Vendor Advisory x_refsource_confirm
http://www.belkin.com/us/support-article?articleNum=4831
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/show/osvdb/114345
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1031210
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/70977
Various Sources x_refsource_misc
https://labs.integrity.pt/advisories/cve-2014-1635/

Scores

EPSS 0.8287
EPSS Percentile 99.3%

Details

VulnCheck KEV 2025-10-09
CWE
CWE-119
Status published
Products (2)
belkin/n750_wireless_router f9k1103
belkin/n750_wireless_router_firmware < 1.10.16n
Published Nov 12, 2014
Tracked Since Feb 18, 2026