prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/161757/D-Link-DIR-3060-1.11b04-Command-Injection.html | Exploit Third Party Advisory VDB Entry |
http://seclists.org/fulldisclosure/2021/Mar/23 | Mailing List Third Party Advisory |
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10208 | Patch Vendor Advisory |
https://www.iot-inspector.com/blog/advisory-d-link-dir-3060/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
19 Mar 2021, 16:21
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 9.0
v3 : 8.8 |
CWE | CWE-77 | |
CPE | cpe:2.3:o:dlink:dir-3060_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:dlink:dir-3060:-:*:*:*:*:*:*:* |
|
References | (MISC) https://www.iot-inspector.com/blog/advisory-d-link-dir-3060/ - Exploit, Third Party Advisory | |
References | (CONFIRM) https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10208 - Patch, Vendor Advisory | |
References | (MISC) http://packetstormsecurity.com/files/161757/D-Link-DIR-3060-1.11b04-Command-Injection.html - Exploit, Third Party Advisory, VDB Entry | |
References | (FULLDISC) http://seclists.org/fulldisclosure/2021/Mar/23 - Mailing List, Third Party Advisory |
12 Mar 2021, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Mar 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Mar 2021, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-03-11 17:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-28144
Mitre link : CVE-2021-28144
CVE.ORG link : CVE-2021-28144
JSON object : View
Products Affected
dlink
- dir-3060
- dir-3060_firmware
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')