Unrated severityNVD Advisory· Published Feb 6, 2020· Updated Aug 6, 2024
CVE-2012-6297
CVE-2012-6297
Description
Command Injection vulnerability exists via a CSRF in DD-WRT 24-sp2 from specially crafted configuration values containing shell meta-characters, which could let a remote malicious user cause a Denial of Service.
Affected products
2- DD-WRT/DD-WRTdescription
Patches
Vulnerability mechanics
References
4- lists.openwall.net/bugtraq/2013/07/12/2mitremailing-listx_refsource_BUGTRAQ
- packetstormsecurity.com/files/cve/CVE-2012-6297mitrex_refsource_MISC
- seclists.org/fulldisclosure/2013/Oct/241mitremailing-listx_refsource_FULLDISC
- vuldb.commitrex_refsource_MISC
News mentions
0No linked articles in our index yet.