漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
D-Link DCS-825L firmware version 1.08.01 and possibly prior versions contain an insecure implementation in the mydlink-watch-dog.sh script. The script monitors and respawns the `dcp` and `signalc` binaries without validating their integrity, origin, or permissions. An attacker with filesystem access (e.g., via UART or firmware modification) may replace these binaries to achieve persistent arbitrary code execution with root privileges. The issue stems from improper handling of executable trust and absence of integrity checks in the watchdog logic.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DCS-825L 安全漏洞
Vulnerability Description
D-Link DCS-825L是中国友讯(D-Link)公司的一款无线网络摄像头。 D-Link DCS-825L 1.08.01及之前版本存在安全漏洞,该漏洞源于mydlink-watch-dog.sh脚本未验证二进制完整性,可能导致持久性任意代码执行。
CVSS Information
N/A
Vulnerability Type
N/A