A vulnerability has been found in Linksys WAG54G2 1.00.10 and classified as critical. Affected by this vulnerability is an unknown part of the file setup.cgi. The manipulation of the argument c4_ping_ipaddr as part of a Shell Metacharacter leads to a command injection vulnerability. The CWE definition for the vulnerability is CWE-77. The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:

On Linksys WAG54G2 1.00.10 devices, there is authenticated command injection via shell metacharacters in the setup.cgi c4_ping_ipaddr variable.

The weakness was presented 06/11/2019 by Michal Sajdak. This vulnerability is known as CVE-2009-5157 since 06/11/2019. The attack can be launched remotely. A single authentication is necessary for exploitation. Technical details and also a public exploit are known. The attack technique deployed by this issue is T1202 according to MITRE ATT&CK.

It is possible to download the exploit at securityfocus.com. It is declared as proof-of-concept.

Applying a patch is able to eliminate this problem.

The vulnerability is also documented in the vulnerability database at SecurityFocus (BID 35142†). Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Productinfo

Vendor

• Linksys

Name

• WAG54G2

Version

• 1.00.10

License

• commercial

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion