NotCVE - vendor:"Dlink" product:"Dir-601 Firmware" version:"1.02na"

2 results (0.010 seconds)

CVSS: 8.1EPSS: 1%CPEs: 2EXPL: 3

CVE-2018-10641

https://notcve.org/view.php?id=CVE-2018-10641

D-Link DIR-601 A1 1.02NA devices do not require the old password for a password change, which occurs in cleartext. Los dispositivos D-Link DIR-601 A1 1.02NA no requieren la contraseña antigua para cambiarla, lo que ocurre en texto claro. • https://advancedpersistentsecurity.net/cve-2018-10641 https://gist.github.com/jocephus/806ff4679cf54af130d69777a551f819 https://www.peerlyst.com/posts/vulnerability-disclosure-insecure-authentication-practices-in-d-link-router-cve-2018-10641-joe-gray • CWE-287: Improper Authentication •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

CVE-2011-4821

https://notcve.org/view.php?id=CVE-2011-4821

Directory traversal vulnerability in the TFTP server in D-Link DIR-601 Wireless N150 Home Router with firmware 1.02NA allows remote attackers to read arbitrary files via unspecified vectors. Vulnerabilidad de salto de directorio en el servidor TFTP en D-Link DIR-601 Wireless N150 Home Router con firmware 1.02NA permite a atacantes remotos leer ficheros arbitrarios a través de vectores no especificados. • http://secunia.com/advisories/47762 http://www.securityfocus.com/archive/1/521369 http://www.securityfocus.com/bid/51659 http://www.solutionary.com/research/vulnerability-disclosures/2012/01/d-link-dir-601-tftp-directory-traversal-vulnerability • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •