CVE-2014-2962 Revisited

Full Disclosure:
Target: Belkin Router N150
Vulnerability: Path Traversal Vulnerability

Belkin N150 Router

While configuring Belkin Router N150, I came across the url:*

At first, this appeared to be normal url. But see the parameter, “getpage=”
This parameter seems fishy. So, I tried to look for vulnerability. On passing the “/etc/passwd” as parameter to getpage, it revealed the passwd file. was vulnerable.

I looked for my router firmware version and checked whether any existing exploit available or not. I found that, firmware i.e 1.00.06 has existing exploit available found by “Aditya Lad”.


So, I upgraded router to the latest firmware and surprisingly, firmware 1.00.09 was vulnerable.  May be, it was regression from previous firmware.

Again, checked for firmware 1.00.08, which was not supposed to be vulnerable as

“According to Belkin, this issue was resolved in firmware version 1.00.08”

But it was vulnerable.


public ref:

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s