CVE-2012-6614

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: D-Link DSR-250N versions prior to 1.08B31

Description: The issue allows remote authenticated users to obtain persistent root access via the BusyBox CLI, as demonstrated by overwriting the super user password.

Recommendations: For versions prior to 1.08B31, update to version 1.08B31 or later to resolve the issue.

Exploit

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2012-6614

Affected Products

Dsr-250N

CVE-2012-6614

Weakness Enumeration

Related Identifiers

Affected Products

References · 5