Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware before 1.08B77 stores account passwords in cleartext, which allows local users to obtain sensitive information by reading the Users[#]["Password"] fields in /tmp/teamf1.cfg.ascii.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款D-Link产品信息泄露漏洞
Vulnerability Description
D-Link DSR-150等都是友讯(D-Link)公司的无线路由器产品。 多款D-Link产品中存在信息泄露漏洞,该漏洞源于程序以明文方式存储账户密码。本地攻击者可通过读取/tmp/teamf1.cfg.ascii配置文件中的Users[#]["Password"] 字段利用该漏洞获取敏感信息。以下产品及版本受到影响:使用1.08B29及之前版本固件的DSR-150;使用1.05B51及之前版本固件的DSR-150N;使用1.08B39及之前版本固件的DSR-250和DSR-250N;使用1.08B5
CVSS Information
N/A
Vulnerability Type
N/A