CVE-2019-20216

2020-01-29T03:15:00
ID CVE-2019-20216
Type cve
Reporter cve@mitre.org
Modified 2020-01-31T14:41:00

Description

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi() in /htdocs/cgibin, because REMOTE_PORT is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attacker to concatenate arbitrary commands separated by shell metacharacters.