D-Link DIR-550A and DIR-604M Privilege Acquisition Vulnerability

The D-Link DIR-550A and DIR-604M are both wireless router products from AUO D-Link. A security vulnerability exists in the D-Link DIR-550A and DIR-604M versions 2.10KR and earlier. The vulnerability can be exploited by an attacker to gain access by using the default TELNET account...

D-Link DIR-550A and DIR-604M Remote Code Execution Vulnerability

The D-Link DIR-550A and DIR-604M are both wireless router products from AUO D-Link. A remote code execution vulnerability exists in the D-Link DIR-550A and DIR-604M versions 2.10KR and earlier. An attacker can exploit the vulnerability by injecting and executing operating system commands with...

CVE-2018-10967

On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can forge an HTTP request to inject operating system commands that can be executed on the device with higher privileges, aka remote code execution...

CVE-2018-10968

On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can use a default TELNET account to get unauthorized access to vulnerable devices, aka a backdoor access vulnerability...

Improper access control

On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can use a default TELNET account to get unauthorized access to vulnerable devices, aka a backdoor access vulnerability...

CVE-2018-10967

On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can forge an HTTP request to inject operating system commands that can be executed on the device with higher privileges, aka remote code execution...

CVE-2018-10968

On D-Link DIR-550A and DIR-604M devices through v2.10KR, a malicious user can use a default TELNET account to get unauthorized access to vulnerable devices, aka a backdoor access vulnerability...

CVE-2018-10968

The CVE-2018-10968 issue affects D-Link DIR-550A and DIR-604M (through v2.10KR). A backdoor-like vulnerability allows a malicious user to access vulnerable devices via a default TELNET account, enabling unauthorized access. Technical details in CNVD/CVE records confirm affected models and version...

CVE-2018-10967

CVE-2018-10967 affects D-Link DIR-550A and DIR-604M (through v2.10KR). A remote code execution vulnerability allows a malicious user to forge an HTTP request to inject operating system commands with elevated privileges. ROOT CAUSE noted in sources describes lack of proper protection against craft...

PT-2018-3918 · D Link · D-Link Di-604 +1

Name of the Vulnerable Software and Affected Versions: D-Link DIR-550A versions through v2.10KR D-Link DIR-604M versions through v2.10KR Description: The issue allows a malicious user to forge an HTTP request and inject operating system commands that can be executed on the device with higher...