CVE-2017-17065

Name of the Vulnerable Software and Affected Versions D-Link DIR-605L Model B versions prior to FW2.11betaB06 hbrf

Description An issue was discovered related to the code that handles the authentication values for HNAP. An attacker can cause a denial of service (device crash) or possibly have unspecified other impact by sending a sufficiently long string in the password field of the HTTP Basic Authentication section of the HTTP request.

Recommendations For D-Link DIR-605L Model B versions prior to FW2.11betaB06 hbrf, update to FW2.11betaB06 hbrf or later to resolve the issue. As a temporary workaround, consider restricting access to the HTTP Basic Authentication section to minimize the risk of exploitation.