Target: Belkin Router N150
Vulnerability: Path Traversal Vulnerability
While configuring Belkin Router N150, I came across the url:
At first, this appeared to be normal url. But see the parameter, “getpage=”
This parameter seems fishy. So, I tried to look for vulnerability. On passing the “/etc/passwd” as parameter to getpage, it revealed the passwd file. Bang..it was vulnerable.
I looked for my router firmware version and checked whether any existing exploit available or not. I found that, firmware i.e 1.00.06 has existing exploit available found by “Aditya Lad”.
So, I upgraded router to the latest firmware and surprisingly, firmware 1.00.09 was vulnerable. May be, it was regression from previous firmware.
Again, checked for firmware 1.00.08, which was not supposed to be vulnerable as
But it was vulnerable.