Aperto da Alby, 14 Settembre 2013, 16:20:04
DIR-868L Software Release Notes Firmware: v1.08Hardware: A1Date: 2014/07/01Problems Resolved: 1. Fix GMX mail can't use SSL/TLS issue2. Support BCM patch for the CE adaptivity issue3. Fix wan DHCP renew issue by accept packets with broadcast and udp port 68 Enhancements: 1. Enable CTF pppoe acceleration. Note: 1. Update channel list to "D-Link Wi-FI frequency table_20140409"
DIR-868LFirmware Release NotesFirmware: FW1.09.B08 (Release)Hardware: A1Date: 2013/10/07Note:1.Update FCC band 1 output power2.Update mydlink agent to support SSL connectionProblems Resolved:3.Support No-IP DDNS server4.Fix IP conflict in Guest zoneEnhancements:NoneKnown Issues:None
CitazioneD-Link Router : HNAP Privilege Escalation - Command Injection Publication ID: SAP10054Resolved Status: PartialPublished on: 10 April 2015 5:51 GMTLast updated on: 10 April 2015 9:06 GMT Overview The Several of D-Link's Wireless Routers contains a vulnerability that allows a malicious user to escalate privilege using normally unprivileged HNAP commands. This allow them to inject arbitrary commands into the router. References Zhang Wei (Qihoo360 ADLAB) (Link to follow) Description An attacker who wishes to gain acces to the router sends an unprivileged HNAP command such as GetDeviceSettings, they append to the command an additional command separated with an "/", which is used as a separator between commands. Any command(s) after the first will be executed unauthenticated. Additionally, additional commands will be passed directly to the underlying Linux system, allowing the injection of arbitrary system commands. The GetDeviceSettings HNAP Command is used to indicate some very common parameters (e.g. the domain name of the HNAP device), as well as to define which HNAP commands are available.
CitazioneFixedSecurityvulnerabilities as described on [SAP10054]- HNAP Privilege Escalation- Command InjectionFor detailsvisit:http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10054
Citazione di: Pondera il 22 Aprile 2015, 13:45:23Fonte D-Link USFacebook Wi-Fi lets your customers access free Wi-Fi simply by checking in to your business on Facebook.
CitazioneDIR-868L Software Release NotesFirmware: v2.04b01Hardware: B1Date: 2015/11/20Problems Resolved:1. Fixed mobile phone connection issue.2. Fixed Long folder name issue on SharePort.3. Solve the Win 10 Edge browser compatibility issue.a. The client detail information table would stuck after waiting 10 seconds.b. The message box can't display well when upload file to USB storage via web shareport.c. Can't select first file listed on web shareport folder view page.4. If DHCPv6 client cannot get IA-NA and in advertisement, it will ignore this message, expect get an IA-PD.5. Use unique transaction ID for every DNS query.6. DHCP server offers reserved IP to other client.7. Fix issue about Web UI and CGI have different session time.8. If STA setting is IPv6+https, DUT web page can not be accessed Add for https://shareport.local:4433.9. Some packets leak out when restart IPv6 firewall.10. Add translation for QOS page.11. Disable 2.4G host wifi, after saving the 5G guest wifi will be disabled12. Wrong region in firmware query string.13. DUT return wrong region to QRS mobile for iOS.14. Russia Timezone did not update to GMT+3.15. After running manual wizard, the graphical authentication will be disabled.16. When enter wrong password or captcha, the captcha will not auto refresh.17. After running manual wizard, the graphic authentication will be disabled.18. Can not add static route rule of secondary WAN gateway.19. Prevent HNAP GetDeviceSettings command injection.Enhancements:None----------------------------Firmware: v2.03b01Hardware: B1Date: 2015/04/29Problems Resolved:1. Fixed Security vulnerabilities as described on [SAP10054]- HNAP Privilege Escalation- Command InjectionFor details visit:http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10054Enhancements:None----------------------------
Pagina creata in 0.241 secondi con 19 interrogazioni.