PT-2015-5569 · D Link · Dcs-931L

Allen Harper

Published

2015-02-23

Updated

2023-04-26

CVE-2015-2049

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link DCS-931L versions 1.04 and earlier

Description The issue allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, due to an unrestricted file upload vulnerability.

Recommendations For D-Link DCS-931L versions 1.04 and earlier, update to a version later than 1.04 to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2015-2049

Affected Products

Dcs-931L

PT-2015-5569 · D Link · Dcs-931L

CVE-2015-2049

Related Identifiers

Affected Products

References · 5