Summary
Multiple D-Link products are prone to a command-injection vulnerability and multiple information-disclosure vulnerabilities.
Exploiting these issues could allow an attacker to gain access to potentially sensitive information and execute arbitrary commands in the context of the affected device.
Solution
Reportedly the issue is fixed. Please contact the vendor for more information.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities
- 4Images <= 1.7.1 Directory Traversal Vulnerability
- Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
- AdaptBB Multiple Input Validation Vulnerabilities
- AlienVault OSSIM Multiple Remote Code Execution Vulnerabilities