Update CVE-2019-17506.yaml

patch-1
Prince Chaddha 2022-05-17 11:56:58 +05:30 committed by GitHub
parent 2fb77511a4
commit 5e00af02b5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 7 deletions

View File

@ -4,7 +4,8 @@ info:
name: D-Link DIR-868L/817LW - Information Disclosure name: D-Link DIR-868L/817LW - Information Disclosure
author: pikpikcu author: pikpikcu
severity: critical severity: critical
description: D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers are vulnerable to information disclosure vulnerabilities because certain web interfaces do not require authentication. An attacker can get the router's username and password (and other information) via a DEVICE.ACCOUNT value for SERVICES in conjunction with AUTHORIZED_GROUP=1%0a to getcfg.php. This could be used to control the router remotely. description: |
D-Link DIR-868L B1-2.03 and DIR-817LW A1-1.04 routers are vulnerable to information disclosure vulnerabilities because certain web interfaces do not require authentication. An attacker can get the router's username and password (and other information) via a DEVICE.ACCOUNT value for SERVICES in conjunction with AUTHORIZED_GROUP=1%0a to getcfg.php. This could be used to control the router remotely.
reference: reference:
- https://github.com/dahua966/Routers-vuls/blob/master/DIR-868/name%26passwd.py - https://github.com/dahua966/Routers-vuls/blob/master/DIR-868/name%26passwd.py
- https://nvd.nist.gov/vuln/detail/CVE-2019-17506 - https://nvd.nist.gov/vuln/detail/CVE-2019-17506
@ -13,7 +14,7 @@ info:
cvss-score: 9.8 cvss-score: 9.8
cve-id: CVE-2019-17506 cve-id: CVE-2019-17506
cwe-id: CWE-306 cwe-id: CWE-306
tags: cve,cve2019,dlink,router tags: cve,cve2019,dlink,router,disclosure
requests: requests:
- method: POST - method: POST
@ -27,14 +28,14 @@ requests:
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: status
status:
- 200
- type: word - type: word
part: body
words: words:
- "</password>" - "</password>"
- "DEVICE.ACCOUNT" - "DEVICE.ACCOUNT"
part: body
condition: and condition: and
- type: status
status:
- 200
# Enhanced by mp on 2022/05/16 # Enhanced by mp on 2022/05/16