CVE-2015-1187

Related Files

D-Link/TRENDnet NCC Service Command Injection

Posted Apr 16, 2015

Authored by Michael Messner, Peter Adkins, Tiago Caetano Henriques | Site metasploit.com

This Metasploit module exploits a remote command injection vulnerability on several routers. The vulnerability exists in the ncc service, while handling ping commands. This Metasploit module has been tested on a DIR-626L emulated environment only. Several D-Link and TRENDnet devices are reported as affected, including: D-Link DIR-626L (Rev A) v1.04b04, D-Link DIR-636L (Rev A) v1.04, D-Link DIR-808L (Rev A) v1.03b05, D-Link DIR-810L (Rev A) v1.01b04, D-Link DIR-810L (Rev B) v2.02b01, D-Link DIR-820L (Rev A) v1.02B10, D-Link DIR-820L (Rev A) v1.05B03, D-Link DIR-820L (Rev B) v2.01b02, D-Link DIR-826L (Rev A) v1.00b23, D-Link DIR-830L (Rev A) v1.00b07, D-Link DIR-836L (Rev A) v1.01b03, and TRENDnet TEW-731BR (Rev 2) v2.01b01

tags | exploit, remote

advisories | CVE-2015-1187

SHA-256 | 35d9cdabfd053fc6c2ff7f2de254f832a73dc49048156c4f453d8ba4b3f21bc9

Download | Favorite | View

D-Link DIR636L Remote Command Injection

Posted Mar 2, 2015

Authored by Stephan Rickauer, Tiago Caetano Henriques

D-Link DIR636L suffers from a remote command injection vulnerability.

tags | exploit, remote

advisories | CVE-2015-1187

SHA-256 | df7948a9c798ebc1230638924d141d539e501afcc6de8a28a912424e4ab221c5

Download | Favorite | View