D-Link DIR-802 Command Injection Vulnerability

The D-Link DIR-802 is a wireless router from AUO D-Link in Taiwan, China. A command injection vulnerability exists in the D-Link DIR-802 A1 1.00b05 and earlier versions, which stems from the system default of enabling Universal Plug and Play on port 1900. An attacker can exploit this vulnerabilit...

CVE-2021-29379

An issue was discovered on D-Link DIR-802 A1 devices through 1.00b05. Universal Plug and Play UPnP is enabled by default on port 1900. An attacker can perform command injection by injecting a payload into the Search Target ST field of the SSDP M-SEARCH discover packet. NOTE: This vulnerability on...

Command injection

UNSUPPORTED WHEN ASSIGNED An issue was discovered on D-Link DIR-802 A1 devices through 1.00b05. Universal Plug and Play UPnP is enabled by default on port 1900. An attacker can perform command injection by injecting a payload into the Search Target ST field of the SSDP M-SEARCH discover packet...

PT-2021-18192 · D Link · D-Link Dir-802 A1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-802 A1 versions 1.00b05 and earlier Description: An issue was discovered where Universal Plug and Play UPnP is enabled by default on port 1900, allowing an attacker to perform command injection by injecting a payload into the Searc...

D-Link DIR-802 操作系统命令注入漏洞

The D-Link DIR-802 is a wireless router from AUO D-Link in Taiwan, China. A command injection vulnerability exists in the D-Link DIR-802 A1 1.00b05 and earlier versions, which stems from the system default of enabling Universal Plug and Play on port 1900. An attacker can exploit this vulnerabilit...