CVE-2010-0607 in SAM300 AX Router
Summary
by MITRE
Cross-site scripting (XSS) vulnerability in Forms/status_statistics_1 in the Sterlite SAM300 AX Router allows remote attackers to inject arbitrary web script or HTML via the Stat_Radio parameter.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Analysis
by VulDB Data Team • 04/30/2026
The CVE-2010-0607 vulnerability represents a critical cross-site scripting flaw discovered in the Sterlite SAM300 AX Router device, specifically within the Forms/status_statistics_1 component. This vulnerability resides in the router's web-based management interface and affects the device's handling of user input parameters. The flaw manifests when the Stat_Radio parameter is processed without proper input validation or output encoding, creating an avenue for malicious actors to execute arbitrary web scripts within the context of authenticated users' browsers. The vulnerability impacts the router's security posture by potentially allowing unauthorized code execution in the victim's browser session, which could lead to session hijacking, data theft, or further exploitation of the network infrastructure. This issue particularly affects organizations relying on legacy network devices that may not receive regular security updates, as the Sterlite SAM300 AX Router represents an older generation of network equipment that could be present in enterprise environments.
The technical exploitation of this vulnerability follows a standard XSS attack pattern where an attacker crafts malicious input containing JavaScript code within the Stat_Radio parameter. When the router processes this parameter and displays it in the web interface without proper sanitization, the embedded script executes in the browser context of any user viewing the affected page. This type of vulnerability aligns with CWE-79, which specifically addresses Cross-Site Scripting flaws in web applications. The attack vector is particularly concerning because it requires no special privileges beyond access to the router's web interface, making it exploitable by attackers who have obtained valid credentials or those who can perform reconnaissance to identify vulnerable devices. The vulnerability demonstrates poor input validation practices and inadequate output encoding mechanisms within the router's web server implementation, which are fundamental security controls that should be implemented at every layer of web application development.
The operational impact of CVE-2010-0607 extends beyond simple script injection, as it provides attackers with potential access to sensitive network information and management capabilities. In enterprise environments, this vulnerability could enable attackers to escalate privileges, gain unauthorized access to network configuration data, or establish persistent access points through session manipulation. The router's role as a network gateway makes it a prime target for attackers seeking to establish footholds within larger network infrastructures, potentially leading to lateral movement and further compromise of connected systems. Organizations using the Sterlite SAM300 AX Router may experience unauthorized access to critical network statistics, configuration parameters, and potentially sensitive operational data that could be leveraged for advanced persistent threats. The vulnerability also aligns with ATT&CK technique T1071.004, which covers web protocols, as it exploits weaknesses in the web interface of network infrastructure devices.
Mitigation strategies for CVE-2010-0607 should focus on both immediate remediation and long-term security hardening measures. Organizations should implement input validation controls that sanitize all user-supplied data, particularly parameters used in web interfaces, and apply proper output encoding to prevent script execution in web contexts. Network segmentation and access control measures should be strengthened to limit exposure of vulnerable devices to untrusted networks, while implementing web application firewalls to detect and block malicious payloads. Regular security assessments should include inventory tracking of legacy network devices like the Sterlite SAM300 AX Router to identify and prioritize remediation efforts. The vulnerability also underscores the importance of maintaining up-to-date firmware and security patches, as many legacy devices may no longer receive official support from vendors, requiring organizations to develop internal processes for managing security risks in unsupported equipment. Additionally, network monitoring should be enhanced to detect anomalous traffic patterns that might indicate exploitation attempts targeting this vulnerability.