4 matches found
DLink DIR-601 - Credential Disclosure Vulnerability
Exploit for hardware platform in category web applications Exploit Title: DLink DIR-601 - Credential Disclosure Exploit Author: Kevin Randall Vendor Homepage: https://www.dlink.com Software Link: N/A Version: Firmware: 2.02NA Hardware Version B1 Tested on: Windows 10 + Mozilla Firefox CVE :...
DLink DIR-601 - Credential Disclosure
Exploit Title: DLink DIR-601 - Credential Disclosure Google Dork: N/A Date: 2018-06-24 Exploit Author: Kevin Randall Vendor Homepage: https://www.dlink.com Software Link: N/A Version: Firmware: 2.02NA Hardware Version B1 Tested on: Windows 10 + Mozilla Firefox CVE : CVE-2018-12710 1. Description...
CVE-2018-12710
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account which is a low privilege account access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to the admin password being displayed in XML...
CVE-2018-12710
CVE-2018-12710 affects D-Link DIR-601 devices (firmware about 2.02NA). A local attacker with a low-privilege User account can intercept a POST response and view the admin password in XML, gaining Admin rights. The issue is evidenced by multiple sources (NVD/NVD entry, Exploit-DB PoC, CNVD entry, ...