D-Link DS-624S Multiple Vulnerabilities

The D-Link DS-624S router (Shodan search) contains two default unpassworded accounts according to the user manual.

admin / (blank)
user / (blank)

In addition, the /Tools/tools_admin.htm page will send the cleartext admin password hash (in 10 different places) over HTTP (CVE-2013-78001).

DS-624S-disc1

Advertisements

Tags: , , , ,

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


%d bloggers like this: