| tiêu đề | D-Link DIR-852 1.00CN B09 Command Injection |
|---|
| Mô tả | A command injection vulnerability exists in the D-Link DIR-852 router, firmware version 1.00CNB09. The vulnerability stems from improper input sanitization within the hedwig.cgi script when processing device settings, such as the NTP server configuration.
An authenticated attacker can submit a specially crafted payload containing malicious commands in the NTP server field via the web management interface (e.g., the tools_time.php page). Because the backend validation script only checks if the input is empty and fails to filter special characters, this malicious input is saved to the device's configuration. The backend service later retrieves this value and directly concatenates it into a system command for time synchronization, leading to arbitrary command execution with root privileges on the device. |
|---|
| Nguồn | ⚠️ https://github.com/i-Corner/cve/issues/31 |
|---|
| Người dùng | iC0rner (UID 82839) |
|---|
| Đệ trình | 09/09/2025 08:44 (cách đây 9 các tháng) |
|---|
| Kiểm duyệt | 17/09/2025 14:10 (8 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 324658 [D-Link DIR-852 1.00CN B09 Web Management Interface hedwig.cgi nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|