VAR-200801-0089
Vulnerability from variot - Updated: 2025-04-10 23:25The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote attackers to read and modify configuration via a direct request to SaveCfgFile.cgi. Successful exploits will allow unauthorized attackers to gain access to administrative functionality and completely compromise vulnerable devices; other attacks are also possible. The issue affects firmware version 3.01.53; other versions may also be vulnerable.
A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched.
The vulnerability is caused due to missing authentication checks when accessing the SaveCfgFile.cgi script, which can be exploited to disclose sensitive information like the router's password.
Note: If remote management is enabled, this can also be exploited from people outside the local network.
SOLUTION: Restrict access to the device or use it in trusted network environments only.
Reportedly, the vendor is working on a fix. A fixed beta version should be available soon, a final version is planned to be released before end of February.
PROVIDED AND/OR DISCOVERED BY: DarkFig
ORIGINAL ADVISORY: http://milw0rm.com/exploits/4941
About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website
{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-200801-0089",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "f5d9230-4",
"scope": null,
"trust": 1.4,
"vendor": "belkin",
"version": null
},
{
"model": "f5d9230-4",
"scope": "eq",
"trust": 1.0,
"vendor": "belkin",
"version": "*"
},
{
"model": "f5d9230-4",
"scope": "eq",
"trust": 0.3,
"vendor": "belkin",
"version": "0"
}
],
"sources": [
{
"db": "BID",
"id": "27359"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:belkin:f5d9230-4",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "DarkFig is credited with the discovery of this issue.",
"sources": [
{
"db": "BID",
"id": "27359"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
}
],
"trust": 0.9
},
"cve": "CVE-2008-0403",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "nvd@nist.gov",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.0,
"id": "CVE-2008-0403",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:N",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.0,
"id": "VHN-30528",
"impactScore": 4.9,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:S/C:P/I:P/A:N",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2008-0403",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2008-0403",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNNVD",
"id": "CNNVD-200801-352",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-30528",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote attackers to read and modify configuration via a direct request to SaveCfgFile.cgi. \nSuccessful exploits will allow unauthorized attackers to gain access to administrative functionality and completely compromise vulnerable devices; other attacks are also possible. \nThe issue affects firmware version 3.01.53; other versions may also be vulnerable. \n\n----------------------------------------------------------------------\n\nA new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI\nhas been released. The new version includes many new and advanced\nfeatures, which makes it even easier to stay patched. \n\nThe vulnerability is caused due to missing authentication checks when\naccessing the SaveCfgFile.cgi script, which can be exploited to\ndisclose sensitive information like the router\u0027s password. \n\nNote: If remote management is enabled, this can also be exploited\nfrom people outside the local network. \n\nSOLUTION:\nRestrict access to the device or use it in trusted network\nenvironments only. \n\nReportedly, the vendor is working on a fix. A fixed beta version\nshould be available soon, a final version is planned to be released\nbefore end of February. \n\nPROVIDED AND/OR DISCOVERED BY:\nDarkFig\n\nORIGINAL ADVISORY:\nhttp://milw0rm.com/exploits/4941\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2008-0403"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "BID",
"id": "27359"
},
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "PACKETSTORM",
"id": "63292"
}
],
"trust": 2.07
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-30528",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2008-0403",
"trust": 2.8
},
{
"db": "BID",
"id": "27359",
"trust": 2.0
},
{
"db": "SECUNIA",
"id": "28554",
"trust": 1.9
},
{
"db": "EXPLOIT-DB",
"id": "4941",
"trust": 1.8
},
{
"db": "SREASON",
"id": "3566",
"trust": 1.7
},
{
"db": "VUPEN",
"id": "ADV-2008-0215",
"trust": 1.7
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640",
"trust": 0.8
},
{
"db": "MILW0RM",
"id": "4941",
"trust": 0.6
},
{
"db": "BUGTRAQ",
"id": "20080119 BELKIN WIRELESS G PLUS MIMO ROUTER F5D9230-4 AUTHENTICATION BYPASS VULNERABILITY",
"trust": 0.6
},
{
"db": "XF",
"id": "39793",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-30528",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "63292",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "BID",
"id": "27359"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "PACKETSTORM",
"id": "63292"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"id": "VAR-200801-0089",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-10T23:25:02.594000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.belkin.com/"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-287",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/27359"
},
{
"trust": 1.7,
"url": "http://secunia.com/advisories/28554"
},
{
"trust": 1.7,
"url": "http://securityreason.com/securityalert/3566"
},
{
"trust": 1.1,
"url": "http://www.securityfocus.com/archive/1/486748/100/0/threaded"
},
{
"trust": 1.1,
"url": "https://www.exploit-db.com/exploits/4941"
},
{
"trust": 1.1,
"url": "http://www.vupen.com/english/advisories/2008/0215"
},
{
"trust": 1.1,
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39793"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-0403"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-0403"
},
{
"trust": 0.6,
"url": "http://xforce.iss.net/xforce/xfdb/39793"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/archive/1/archive/1/486748/100/0/threaded"
},
{
"trust": 0.6,
"url": "http://www.milw0rm.com/exploits/4941"
},
{
"trust": 0.6,
"url": "http://www.frsirt.com/english/advisories/2008/0215"
},
{
"trust": 0.3,
"url": "http://catalog.belkin.com/iwcatproductpage.process?product_id=203415"
},
{
"trust": 0.3,
"url": "/archive/1/486748"
},
{
"trust": 0.1,
"url": "http://secunia.com/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "https://psi.secunia.com/?page=changelog"
},
{
"trust": 0.1,
"url": "https://psi.secunia.com/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/28554/"
},
{
"trust": 0.1,
"url": "http://milw0rm.com/exploits/4941"
},
{
"trust": 0.1,
"url": "http://secunia.com/product/17458/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/about_secunia_advisories/"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "BID",
"id": "27359"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "PACKETSTORM",
"id": "63292"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-30528"
},
{
"db": "BID",
"id": "27359"
},
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"db": "PACKETSTORM",
"id": "63292"
},
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2008-01-23T00:00:00",
"db": "VULHUB",
"id": "VHN-30528"
},
{
"date": "2008-01-21T00:00:00",
"db": "BID",
"id": "27359"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"date": "2008-02-06T00:59:36",
"db": "PACKETSTORM",
"id": "63292"
},
{
"date": "2008-01-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"date": "2008-01-23T12:00:00",
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-10-15T00:00:00",
"db": "VULHUB",
"id": "VHN-30528"
},
{
"date": "2015-05-07T17:33:00",
"db": "BID",
"id": "27359"
},
{
"date": "2012-06-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2008-002640"
},
{
"date": "2008-09-05T00:00:00",
"db": "CNNVD",
"id": "CNNVD-200801-352"
},
{
"date": "2025-04-09T00:30:58.490000",
"db": "NVD",
"id": "CVE-2008-0403"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Belkin Wireless G Plus MIMO Router F5D9230-4 of Web Server configuration change vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2008-002640"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "authorization issue",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-200801-352"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…