CVE-2026-42376

Name of the Vulnerable Software and Affected Versions D-Link DIR-456U Hardware Revision A1

Description The device contains a hardcoded telnet backdoor. At boot, a telnet daemon is started via the script '/etc/init0.d/S80telnetd.sh' using the username "Alphanetworks" and a static password "whdrv01 dlob dir456U" stored in '/etc/config/image sign'. The custom telnetd binary utilizes a -u user:password flag, and the login binary employs the strcmp() function to validate credentials. An unauthenticated attacker on the local network can use these credentials to gain a root shell, providing full administrative control over the device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.