CVE-2008-2636

CVE Database · CVE-2008-2636

CVE-2008-2636

· N/AModified

CVSS v3.1

N/A

EPSS

3.40%

Published

Jun 9, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The HTTP service on the Cisco Linksys WRH54G with firmware 1.01.03 allows remote attackers to cause a denial of service (management interface outage) or possibly execute arbitrary code via a URI that begins with a "/./" sequence, contains many instances of a "front_page" sequence, and ends with a ".asp" sequence.

Weaknesses (CWE)

CWE-20

Affected Products (1)

cisco · linksys_wrh54g_routervulnerable

References (12)

http://secunia.com/advisories/30562

http://securityreason.com/securityalert/3929

http://www.securityfocus.com/archive/1/493129/100/0/threaded

http://www.securitytracker.com/id?1020237

http://www.vupen.com/english/advisories/2008/1772/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/42890