ID
VAR-201203-0411
TITLE
D-Link DIR-605 Broadband Router Cross-Site Request Forgery Vulnerability
Trust: 1.2
DESCRIPTION
The D-Link DIR-605 is a SOHO wireless router that supports MDI/MDI-X technology with one 100M WAN port and four 100M LAN ports. D-Link DIR-605 has a cross-site request forgery vulnerability in its implementation. A remote attacker who successfully exploited this vulnerability could change device configuration information and perform illegal operations. D-Link DIR-605 running firmware 2.00 is vulnerable. Additional models and firmware versions may also be affected
Trust: 0.81
IOT TAXONOMY
| category: | ['IoT', 'Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | d link | model: | dir-605 | scope: | eq | version: | 0 | Trust: 0.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
cross-site request forgery
Trust: 0.6
EXTERNAL IDS
| db: | BID | id: | 52682 | Trust: 1.5 |
| db: | CNVD | id: | CNVD-2012-1559 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-201210-874 | Trust: 0.6 |
REFERENCES
| url: | http://www.securityfocus.com/bid/52682 | Trust: 1.2 |
| url: | http://www.dlink.com/ | Trust: 0.3 |
| url: | http://www.dlink.com/products/?pid=dir-605 | Trust: 0.3 |
CREDITS
iqzer0++
Trust: 0.9
SOURCES
| db: | CNVD | id: | CNVD-2012-1559 |
| db: | BID | id: | 52682 |
| db: | CNNVD | id: | CNNVD-201210-874 |
LAST UPDATE DATE
2022-05-17T02:08:16.426000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2012-1559 | date: | 2012-03-27T00:00:00 |
| db: | BID | id: | 52682 | date: | 2012-03-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-201210-874 | date: | 2012-11-08T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2012-1559 | date: | 2012-03-27T00:00:00 |
| db: | BID | id: | 52682 | date: | 2012-03-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-201210-874 | date: | 2012-03-21T00:00:00 |