virus logo Intrusion Prevention

D-Link.Cookie.Command.Injection

description-logoDescription

This indicates an attack attempt against a remote Code Execution vulnerability in D-Link devices.
The vulnerability is caused by insufficient check on files upload from clients and client requests. A remote attacker may be able to exploit those to execute arbitrary code within the context of the application.

affected-products-logoAffected Products

D-Link DSP-W110 (Rev A) v1.05b01

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 40936
Created Aug 18, 2015
Updated Sep 02, 2015
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action drop
Active
Affected OS Linux, BSD
Affected App Other