D-Link DWL-3200AP Multiple Security Vulnerabilities
BID:68964
Info
D-Link DWL-3200AP Multiple Security Vulnerabilities
| Bugtraq ID: | 68964 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 30 2014 12:00AM |
| Updated: | Aug 14 2014 02:30PM |
| Credit: | pws |
| Vulnerable: |
D-Link DWL-3200AP Firmware 2.55RC549 D-Link DWL-3200AP 0 |
| Not Vulnerable: | |
Discussion
D-Link DWL-3200AP Multiple Security Vulnerabilities
D-Link DWL-3200AP is prone to the following security vulnerabilities:
1. A security-bypass vulnerability
2. Multiple information-disclosure vulnerabilities
An attacker can exploit these issues to bypass security restrictions or gain access to potentially sensitive information and perform unauthorized actions in the context of a user session. Other attacks are also possible.
D-Link DWL-3200AP is prone to the following security vulnerabilities:
1. A security-bypass vulnerability
2. Multiple information-disclosure vulnerabilities
An attacker can exploit these issues to bypass security restrictions or gain access to potentially sensitive information and perform unauthorized actions in the context of a user session. Other attacks are also possible.
Exploit / POC
D-Link DWL-3200AP Multiple Security Vulnerabilities
An attacker can exploit these issues through readily available tools and a browser.
The following Proof-of-concept is available:
An attacker can exploit these issues through readily available tools and a browser.
The following Proof-of-concept is available:
Solution / Fix
D-Link DWL-3200AP Multiple Security Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.