4 matches found
PT-2022-12378 · Totolink · Totolink X5000R
Name of the Vulnerable Software and Affected Versions: TOTOLINK X5000R version 9.1.0u.6118 B20201102 Description: A stack overflow was discovered in the setL2tpServerCfg function, allowing attackers to cause a Denial of Service DoS via the eip, sip, server parameters. Recommendations: For TOTOLIN...
CVE-2018-10823
An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...
CVE-2018-10823
An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...
D-Link router httpd server shell command injection vulnerability
The DWR-116, DIR-140, and DIR-640 are all D-Link router products. A shell command injection vulnerability exists in several series of D-Link router httpd servers, where an authenticated attacker can inject shell commands into the Sip parameter of the chkisg.htm page to execute arbitrary code...