56 matches found
EUVD-2020-30107
Malware in sbrugna...
EUVD-2020-30106
Malware in sbrugna...
EUVD-2012-1333
Malware in sbrugna...
EUVD-2020-30104
Malware in sbrugna...
CVE-2020-9544
An issue was discovered on D-Link DSL-2640B E1 EU1.01 devices. The administrative interface doesn't perform authentication checks for a firmware-update POST request. Any attacker that can access the administrative interface can install firmware of their choice...
CVE-2020-9278
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL...
D-Link DSL-2640B B2 Trust Management Issue Vulnerability
The D-Link DSL-2640B B2 is a wireless router from AUO D-Link of Taiwan, China. A security vulnerability exists in the D-Link DSL-2640B B2 EU4.01B version, which comes with hard-coded accounts in the router. The vulnerability can be exploited by an attacker to log in to the management interface,...
Unspecified Vulnerability in D-Link DSL-2640B B2 cfm UDP
The D-Link DSL-2640B B2 is a wireless router from AUO D-Link of Taiwan, China. A security vulnerability exists in the cfm UDP service listening on port 65002 in the D-Link DSL-2640B B2 EU4.01B version. An attacker could exploit the vulnerability to obtain administrative credentials...
CVE-2020-9276
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The function docgi, which processes cgi requests supplied to the device's web servers, is vulnerable to a remotely exploitable stack-based buffer overflow. Unauthenticated exploitation is possible by combining this vulnerability with...
CVE-2020-9275
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. A cfm UDP service listening on port 65002 allows remote, unauthenticated exfiltration of administrative credentials...
CVE-2020-9279
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. A hard-coded account allows management-interface login with high privileges. The logged-in user can perform critical tasks and take full control of the device...
CVE-2020-9276
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The function docgi, which processes cgi requests supplied to the device's web servers, is vulnerable to a remotely exploitable stack-based buffer overflow. Unauthenticated exploitation is possible by combining this vulnerability with...
CVE-2020-9275
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. A cfm UDP service listening on port 65002 allows remote, unauthenticated exfiltration of administrative credentials...
CVE-2020-9279
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. A hard-coded account allows management-interface login with high privileges. The logged-in user can perform critical tasks and take full control of the device...
CVE-2020-9277
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. Authentication can be bypassed when accessing cgi modules. This allows one to perform administrative tasks e.g., modify the admin password with no authentication...
CVE-2020-9278
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL...
CVE-2020-9278
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL...
Default configuration
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The device can be reset to its default configuration by accessing an unauthenticated URL...
Hardcoded credentials
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. A hard-coded account allows management-interface login with high privileges. The logged-in user can perform critical tasks and take full control of the device...
Stack overflow
An issue was discovered on D-Link DSL-2640B B2 EU4.01B devices. The function docgi, which processes cgi requests supplied to the device's web servers, is vulnerable to a remotely exploitable stack-based buffer overflow. Unauthenticated exploitation is possible by combining this vulnerability with...