D-Link DSL-320B Multiple Security Vulnerabilities Network Vulnerability

Summary

D-Link DSL-320B is prone to the following security vulnerabilities: 1. Access to the Config file without authentication 2. Access to the logfile without authentication 3. Stored XSS within parental contro An attacker can exploit these issues to gain access to potentially sensitive information, decrypt stored passwords, steal cookie-based authentication credentials.

Solution

Firmware update is available.

References

http://www.dlink.com/
http://www.s3cur1ty.de/m1adv2013-018

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 9.0 AV:N/AC:L/Au:N/C:C/I:P/A:P

Related Vulnerabilities

AWCM CMS Multiple Remote File Include Vulnerabilities
Admbook PHP Code Injection Flaw
Acute Control Panel SQL Injection Vulnerability and Remote File Include Vulnerability
ArticleFR CMS Multiple Vulnerabilities - Jan15
AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities

Take action and discover your vulnerabilities