D-Link DIR-300 up to 1.2.94 index.cgi cross-site request forgery

Summaryinfo

A vulnerability has been found in D-Link DIR-300 up to 1.2.94 and classified as problematic. This issue affects some unknown processing of the file index.cgi. This manipulation causes cross-site request forgery. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

Detailsinfo

A vulnerability was found in D-Link DIR-300 up to 1.2.94 (Router Operating System). It has been declared as problematic. Affected by this vulnerability is an unknown part of the file index.cgi. The manipulation with an unknown input leads to a cross-site request forgery vulnerability. The CWE definition for the vulnerability is CWE-352. The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. As an impact it is known to affect confidentiality, integrity, and availability.

The weakness was shared 10/31/2016 by MustLive as Vulnerabilities in D-Link DIR-300 as not defined mailinglist post (Full-Disclosure). The advisory is shared at seclists.org. The attack can be launched remotely. The exploitation doesn't need any form of authentication. It demands that the victim is doing some kind of user interaction. Technical details and also a public exploit are known.

A public exploit has been developed in URL and been published immediately after the advisory. It is possible to download the exploit at seclists.org. It is declared as proof-of-concept. The code used by the exploit is:

http://site/index.cgi?v2=y&rq=y&res_config_action=3&res_config_id=69&res_struct_size=1&res_buf=password|

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The entry VDB-93228 is related to this item. If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Productinfo

Type

• Router Operating System

Vendor

• D-Link

Name

• DIR-300

Version

• 1.2.0
• 1.2.1
• 1.2.2
• 1.2.3
• 1.2.4
• 1.2.5
• 1.2.6
• 1.2.7
• 1.2.8
• 1.2.9
• 1.2.10
• 1.2.11
• 1.2.12
• 1.2.13
• 1.2.14
• 1.2.15
• 1.2.16
• 1.2.17
• 1.2.18
• 1.2.19
• 1.2.20
• 1.2.21
• 1.2.22
• 1.2.23
• 1.2.24
• 1.2.25
• 1.2.26
• 1.2.27
• 1.2.28
• 1.2.29
• 1.2.30
• 1.2.31
• 1.2.32
• 1.2.33
• 1.2.34
• 1.2.35
• 1.2.36
• 1.2.37
• 1.2.38
• 1.2.39
• 1.2.40
• 1.2.41
• 1.2.42
• 1.2.43
• 1.2.44
• 1.2.45
• 1.2.46
• 1.2.47
• 1.2.48
• 1.2.49
• 1.2.50
• 1.2.51
• 1.2.52
• 1.2.53
• 1.2.54
• 1.2.55
• 1.2.56
• 1.2.57
• 1.2.58
• 1.2.59
• 1.2.60
• 1.2.61
• 1.2.62
• 1.2.63
• 1.2.64
• 1.2.65
• 1.2.66
• 1.2.67
• 1.2.68
• 1.2.69
• 1.2.70
• 1.2.71
• 1.2.72
• 1.2.73
• 1.2.74
• 1.2.75
• 1.2.76
• 1.2.77
• 1.2.78
• 1.2.79
• 1.2.80
• 1.2.81
• 1.2.82
• 1.2.83
• 1.2.84
• 1.2.85
• 1.2.86
• 1.2.87
• 1.2.88
• 1.2.89
• 1.2.90
• 1.2.91
• 1.2.92
• 1.2.93
• 1.2.94

License

• commercial

Website

• Vendor: https://www.dlink.com/

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Discussion