D-Link DCS-93xL Model Family Unrestricted Upload Vulnerability

Last Update Date: 17 Mar 2015 09:45 Release Date: 17 Mar 2015 3707 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Others OS

TYPE: Others OS

A vulnerability was identified in the D-Link DCS-93xL family of devices, which allows an attacker to upload arbitrary files from the attackers system. The attacker may specify the file location to write on the device. This could lead to data being created, modified, or deleted. It may also lead to arbitrary code execution.

Impact

  • Remote Code Execution
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • The D-Link Firmware Version 1.04 (2014-04-21) has been found to be vulnerable.
  • Other firmware versions may also be affected.
  • This firmware is used on the DCS-931L, DCS-930L, DCS-932L, and DCS-933L models.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Adobe Flash Player Multiple Vulnerabilities

16 Mar 2015 3760 Views

Next

Apple Safari Multiple Vulnerabilities

19 Mar 2015 3623 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY