Sign-up

ID

VAR-201506-0516


TITLE

Multiple Vulnerabilities in D-Link DSP-W110

Trust: 0.6

sources: CNVD: CNVD-2015-04070

DESCRIPTION

D-Link DSP-W110 is a wireless smart plug-in for D-Link. A security vulnerability exists in D-Link DSP-W110 using firmware version 1.05b01. Attackers can use this vulnerability to control applications, access or modify data, or use potential vulnerabilities in the underlying database to upload arbitrary files and execute arbitrary commands

Trust: 1.35

sources: CNVD: CNVD-2015-04070 // CNNVD: CNNVD-201506-503 // BID: 75170

IOT TAXONOMY

category:['IoT', 'Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-04070

AFFECTED PRODUCTS

vendor:d linkmodel:dsp-w110 1.05b01scope: - version: -

Trust: 0.6

vendor:dlinkmodel:dsp-w110 1.05b01scope: - version: -

Trust: 0.3

sources: CNVD: CNVD-2015-04070 // BID: 75170

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2015-04070
value: HIGH

Trust: 0.6

CNVD: CNVD-2015-04070
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2015-04070

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201506-503

TYPE

Unknown

Trust: 0.3

sources: BID: 75170

EXTERNAL IDS

db:BIDid:75170

Trust: 1.5

db:CNVDid:CNVD-2015-04070

Trust: 0.6

db:CNNVDid:CNNVD-201506-503

Trust: 0.6

sources: CNVD: CNVD-2015-04070 // BID: 75170 // CNNVD: CNNVD-201506-503

REFERENCES

url:http://www.securityfocus.com/bid/75170

Trust: 1.2

url:http://www.dlink.co.in/

Trust: 0.3

url:http://seclists.org/fulldisclosure/2015/jun/38

Trust: 0.3

sources: CNVD: CNVD-2015-04070 // BID: 75170 // CNNVD: CNNVD-201506-503

CREDITS

Peter Adkins

Trust: 0.9

sources: BID: 75170 // CNNVD: CNNVD-201506-503

SOURCES

db:CNVDid:CNVD-2015-04070
db:BIDid:75170
db:CNNVDid:CNNVD-201506-503

LAST UPDATE DATE

2022-05-17T01:52:39.980000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2015-04070date:2015-06-29T00:00:00
db:BIDid:75170date:2015-06-11T00:00:00
db:CNNVDid:CNNVD-201506-503date:2015-06-25T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2015-04070date:2015-06-29T00:00:00
db:BIDid:75170date:2015-06-11T00:00:00
db:CNNVDid:CNNVD-201506-503date:2015-06-25T00:00:00