CVE-2009-2765

CVE-2009-2765 · HIGH Severity

AV:A/AC:L/AU:N/C:C/I:C/A:C

httpd.c in httpd in the management GUI in DD-WRT 24 sp1, and other versions before build 12533, allows remote attackers to execute arbitrary commands via shell metacharacters in a request to a cgi-bin/ URI.

Learn more about our Web Application Penetration Testing UK.