CVE-2018-6529

Name of the Vulnerable Software and Affected Versions D-Link DIR-868L versions DIR868LA1 FW112b04 and earlier D-Link DIR-865L versions DIR-865L REVA FIRMWARE PATCH 1.08.B01 and earlier D-Link DIR-860L versions DIR860LA1 FW110b04 and earlier

Description The issue allows remote attackers to read a cookie via a crafted Treturn parameter to the soap.cgi endpoint. This is due to an XSS vulnerability in the htdocs/webinc/js/bsc sms inbox.php file.

Recommendations For D-Link DIR-868L versions DIR868LA1 FW112b04 and earlier, consider disabling access to the soap.cgi endpoint until a patch is available. For D-Link DIR-865L versions DIR-865L REVA FIRMWARE PATCH 1.08.B01 and earlier, restrict the use of the Treturn parameter in the soap.cgi endpoint to minimize the risk of exploitation. For D-Link DIR-860L versions DIR860LA1 FW110b04 and earlier, avoid using the Treturn parameter in the soap.cgi endpoint until the issue is resolved.