CVE-2013-6811

Name of the Vulnerable Software and Affected Versions D-Link DSL-6740U gateway (Rev. H1)

Description The issue allows remote attackers to hijack the authentication of administrators for requests that change administrator credentials or enable remote management services. This can affect various settings, including Custom Services in Port Forwarding, Port Triggering Entries, URL Filters in Parental Control, Print Server settings, QoS Queue Setup, or QoS Classification Entries.

Recommendations For D-Link DSL-6740U gateway (Rev. H1), consider disabling remote management services until a patch is available. Restrict access to the gateway's administrative interface to minimize the risk of exploitation. Avoid using the gateway's web interface from untrusted networks or devices. As a temporary workaround, consider implementing additional authentication measures, such as CAPTCHA, to prevent automated attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.