Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. The administrative password is stored in plaintext in the /tmp/csman/0 file. An attacker having a directory traversal (or LFI) can easily get full router access.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款D-Link产品安全漏洞
Vulnerability Description
D-Link DWR-116等都是友讯(D-Link)公司的无线路由器产品。 多款D-Link产品中存在安全漏洞,该漏洞源于程序将管理密码以明文的形式存储在/tmp/csman/0文件。攻击者可利用该漏洞获取路由器全部的访问权限。以下产品和版本受到影响:D-Link DWR-116 1.06及之前版本;DIR-140L 1.02及之前版本;DIR-640L 1.02及之前版本;DWR-512 2.02及之前版本;DWR-712 2.02及之前版本;DWR-912 2.02及之前版本;DWR-921 2.0
CVSS Information
N/A
Vulnerability Type
N/A