D-Link Administrative Password Disclosure

D-Link Administrative Password Disclosure: Posted Jun 26, 2019; Authored by Marty; D-Link models DIR-652, DIR-615, DIR-827, DIR-615, DIR-657, and DIR-825 suffer from an administrative password disclosure vulnerability.; tags | exploit, info disclosure; SHA-256 | 836a2a284ed2a9985417986d306b4db1f5742beca7f44da2a471cb893fd99d6c; Download | Favorite | View

D-Link Administrative Password Disclosure

The problem in the following models :

DIR-652   
DIR-615   
DIR-827   
DIR-615   
DIR-657   
DIR-825   

If login to  web interface as "User" or "user" , and navigate to url :  

https://<ip>:port/wizard_wan.asp   

in web code page:

view-source:<ip>:port/wizard_wan.asp

scroll down page and bang :

administrator password in plain text

ports : 8080  or  8081  .


---
Ta wiadomość została sprawdzona na obecność wirusów przez oprogramowanie antywirusowe Avast.
https://www.avast.com/antivirus

Top Authors In Last 30 Days

Red Hat 300 files
Ubuntu 63 files
Debian 20 files
LiquidWorm 19 files
Apple 9 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files
nu11secur1ty 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,928)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,326)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,981)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

D-Link Administrative Password Disclosure

D-Link Administrative Password Disclosure

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

D-Link Administrative Password Disclosure

Share This

D-Link Administrative Password Disclosure

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems