Info

Disclosure

Jun 21, 2004

Discovery

Unknown

Dates

Exploit

Jun 21, 2004

Solution

Unknown

Description

Dlink DI614+, DI704P and DI624 Xtreme G routers contain a flaw that allows a remote cross site scripting attack. This flaw exists because the firmware does not validate the supplied DHCP hostnames upon writing to the router's log. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the router, leading to a loss of integrity or availability.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): Disable DHCP or do not view the router's log file.

Products

D-Link Systems, Inc.	DI614+	2.0
		2.0 3
		2.0 3g
		2.0f
		2.10
		2.18
		2.30
	DI704P	2.56b5
		2.56b6
		2.60b2
	DI624 Xtreme G	1.28

References

Security Tracker: 1010562
Bugtraq ID: 10587
Secunia Advisory ID: 11919 12018
ISS X-Force ID: 16468
CVE ID: 2004-0615 (see also: NVD)
Related OSVDB ID: 7211 7262
Other Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-06/0327.html
http://www.securityfocus.com/archive/1/366615
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0014.html
http://marc.theaimsgroup.com/?l=bugtraq&m=108786257609932&w=2
http://marc.theaimsgroup.com/?l=bugtraq&m=108797273127182&w=2
http://seclists.org/lists/bugtraq/2004/Jun/0334.html
Packet Storm: http://packetstormsecurity.nl/0406-exploits/dlink614.txt
Vendor URL: http://www.d-link.com/

Credit

c3rb3r - c3rb3rsympatico.ca -

Direct URL: http://osvdb.org/7211

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

D-Link Systems, Inc.

DI614+

DI704P

DI624 Xtreme G

References

Credit