Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On D-Link DAP-1530 (A1) before firmware version 1.06b01, DAP-1610 (A1) before firmware version 1.06b01, DWR-111 (A1) before firmware version 1.02v02, DWR-116 (A1) before firmware version 1.06b03, DWR-512 (B1) before firmware version 2.02b01, DWR-711 (A1) through firmware version 1.11, DWR-712 (B1) before firmware version 2.04b01, DWR-921 (A1) before firmware version 1.02b01, and DWR-921 (B1) before firmware version 2.03b01, there exists an EXCU_SHELL file in the web directory. By sending a GET request with specially crafted headers to the /EXCU_SHELL URI, an attacker could execute arbitrary shell commands in the root context on the affected device. Other devices might be affected as well.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款D-Link产品输入验证错误漏洞
Vulnerability Description
D-Link DAP-1530等都是中国台湾友讯(D-Link)公司的产品。D-Link DAP-1530是一款无线信号扩展器。D-Link DAP-1610是一款无线信号扩展器。D-Link DWR-111是一款无线路由器。 多款D-Link产品中存在安全漏洞。攻击者可通过发送带有特制报头的GET请求利用该漏洞执行任意shell命令。以下产品和版本受到影响:使用1.06b01之前版本固件的DAP-1530 (A1);使用1.06b01之前版本固件的DAP-1610 (A1);使用1.02v02之前版本固
CVSS Information
N/A
Vulnerability Type
N/A