0_O

**Nome do software vulnerável e versões afetadas: D-Link DSR-250N versões anteriores à 1.08B31 Descrição: A vulnerabilidade permite que usuários remotos autenticados obtenham acesso root persistente por meio da CLI do BusyBox, conforme demonstrado pela substituição da senha do superusuário. Recomendações: Para versões anteriores à 1.08B31, atualize para a versão 1.08B31 ou posterior para resolver o problema.

**Nome do software vulnerável e versões afetadas: D-Link DSR-150 versões anteriores à 1.08B44 D-Link DSR-150N versões anteriores à 1.05B64 D-Link DSR-250 versões anteriores à 1.08B44 D-Link DSR-250N versões anteriores à 1.08B44 Versões do D-Link DSR-500 anteriores à 1.08B77 Versões do D-Link DSR-500N anteriores à 1.08B77 Versões do D-Link DSR-1000 anteriores à 1.08B77 Versões do D-Link DSR-1000N anteriores à 1.08B77 Descrição: A vulnerabilidade permite que invasores remotos executem comandos SQL arbitrários por meio da senha da função `login.authenticate` em `share/lua/5.1/teamf1lualib/login.lua` ou `captivePortal.lua`. Isso pode ser explorado enviando uma senha especialmente criada. Recomendações: Para o D-Link DSR-150, atualize para a versão de firmware 1.08B44 ou posterior. Para o D-Link DSR-150N, atualize para a versão de firmware 1.05B64 ou posterior. Para o D-Link DSR-250, atualize para a versão de firmware 1.08B44 ou posterior. Para o D-Link DSR-250N, atualize para a versão de firmware 1.08B44 ou posterior. Para o D-Link DSR-500, atualize para a versão de firmware 1.08B77 ou posterior. Para o D-Link DSR-500N, atualize para a versão de firmware 1.08B77 ou posterior. Para o D-Link DSR-1000, atualize para a versão de firmware 1.08B77 ou posterior. Para o D-Link DSR-1000N, atualize para a versão de firmware 1.08B77 ou posterior.

**Nome do software vulnerável e versões afetadas: D-Link DSR-250N versão 1.05B73 WW Descrição: A vulnerabilidade permite acesso root persistente no dispositivo devido à senha de administrador da conta admin. Recomendações: Para o D-Link DSR-250N versão 1.05B73 WW, atualize o firmware para uma versão que corrija essa vulnerabilidade, pois o uso da senha de administrador padrão pode levar a acesso não autorizado. No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** D-Link DSR-150 versions prior to 1.08B44 D-Link DSR-150N versions prior to 1.05B64 D-Link DSR-250 versions prior to 1.08B44 D-Link DSR-250N versions prior to 1.08B44 D-Link DSR-500 versions prior to 1.08B77 D-Link DSR-500N versions prior to 1.08B77 D-Link DSR-1000 versions prior to 1.08B77 D-Link DSR-1000N versions prior to 1.08B77 **Description** The issue is related to a hardcoded account with administrative privileges, specifically with the username `gkJ9232xXyruTRmY`. This makes it easier for remote attackers to gain access by leveraging their knowledge of the username. **Recommendations** For D-Link DSR-150 versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-150N versions prior to 1.05B64, update the firmware to version 1.05B64 or later. For D-Link DSR-250 versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-250N versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-500 versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-500N versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-1000 versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-1000N versions prior to 1.08B77, update the firmware to version 1.08B77 or later.

**Name of the Vulnerable Software and Affected Versions** D-Link DSR-150 versions prior to 1.08B44 D-Link DSR-150N versions prior to 1.05B64 D-Link DSR-250 versions prior to 1.08B44 D-Link DSR-250N versions prior to 1.08B44 D-Link DSR-500 versions prior to 1.08B77 D-Link DSR-500N versions prior to 1.08B77 D-Link DSR-1000 versions prior to 1.08B77 D-Link DSR-1000N versions prior to 1.08B77 **Description** The issue allows local users to obtain sensitive information by reading the `Users[#]["Password"]` fields in the "/tmp/teamf1.cfg.ascii" file, as account passwords are stored in cleartext. This affects the file system of the D-Link DSR routers, where user passwords are stored in open form in the /tmp/teamf1.cfg.ascii file. **Recommendations** For D-Link DSR-150 versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-150N versions prior to 1.05B64, update the firmware to version 1.05B64 or later. For D-Link DSR-250 versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-250N versions prior to 1.08B44, update the firmware to version 1.08B44 or later. For D-Link DSR-500 versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-500N versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-1000 versions prior to 1.08B77, update the firmware to version 1.08B77 or later. For D-Link DSR-1000N versions prior to 1.08B77, update the firmware to version 1.08B77 or later.

**Name of the Vulnerable Software and Affected Versions** D-Link DSR-1000 versions prior to firmware 1.08B77 D-Link DSR-1000N versions prior to firmware 1.08B77 D-Link DSR-150 versions prior to firmware 1.08B44 D-Link DSR-150N versions prior to firmware 1.05B64 D-Link DSR-250 versions prior to firmware 1.08B44 D-Link DSR-250N versions prior to firmware 1.08B44 D-Link DSR-500 versions prior to firmware 1.08B77 D-Link DSR-500N versions prior to firmware 1.08B77 **Description** The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the "Ping or Trace an IP Address" or "Perform a DNS Lookup" section. This is due to the lack of proper filtering of user input in the `/scgi-bin/platform.cgi` script, specifically in the `Password` field, which enables an attacker to bypass authentication and gain access to the device with administrator privileges. **Recommendations** For D-Link DSR-1000 and DSR-1000N, update to firmware version 1.08B77 or later. For D-Link DSR-150, update to firmware version 1.08B44 or later. For D-Link DSR-150N, update to firmware version 1.05B64 or later. For D-Link DSR-250 and DSR-250N, update to firmware version 1.08B44 or later. For D-Link DSR-500 and DSR-500N, update to firmware version 1.08B77 or later. As a temporary workaround, consider restricting access to the `/scgi-bin/platform.cgi` script to minimize the risk of exploitation. Avoid using the `Password` field in the affected API endpoint until the issue is resolved.