The administration web interface on Belkin Linksys WRT160NL 1.0.04.002_US_20130619 devices allows remote authenticated attackers to execute system commands with root privileges via shell metacharacters in the ui_language POST parameter to the apply.cgi form endpoint. This occurs in do_upgrade_post in mini_httpd. NOTE: This vulnerability only affects products that are no longer supported by the maintaine
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HBelkin Linksys Wrt160nl
HWBelkinwszystkie wersjeBelkin Linksys Wrt160nl Firmware
OSBelkin1.0.04.002_us_20130619
Related vulnerabilities
A stack-based buffer overflow in the ChangeFriendlyName() function of Belkin Smart Outlet V2 F7c063 firmware_2...
In Belkin N300 Firmware 1.00.08, the script located at /setting_hidden.asp, which is accessible before and aft...
Belkin n750 routers have a buffer overflow.
An Authentication Bypass vulnerability in Belkin N300 (F7D7301v1) router allows remote attackers to bypass aut...
Belkin Wemo Switch before WeMo_US_2.00.2176.PVT could allow remote attackers to upload arbitrary files onto th...