CVE-2008-6974

Name of the Vulnerable Software and Affected Versions: DD-WRT versions 24 sp1 and earlier

Description: The issue allows remote attackers to hijack the authentication of administrators for various requests, including executing arbitrary commands via the ping ip parameter, changing administrative credentials via the http username and http passwd parameters, enabling remote administration via the remote management parameter, and configuring port forwarding via certain from, to, ip, and pro parameters.

Recommendations: For DD-WRT versions 24 sp1 and earlier, consider disabling the apply.cgi module until a patch is available to prevent exploitation of the CSRF vulnerabilities. Restrict access to the administrative interface to minimize the risk of unauthorized changes. Avoid using the vulnerable parameters, such as ping ip, http username, http passwd, remote management, from, to, ip, and pro, in the affected API endpoint until the issue is resolved.