D-Link DI-804 router "Remote Administration" allows remote attacker to obtain device information
| dlink-admin-device-information (9969) |  Medium Risk |
Description:
A vulnerability regarding the lack of authentication when "remote administration" is enabled could allow a remote attacker to gain unauthorized access to the Device information and Device status pages to obtain sensitive information, such as the WAN IP address, MAC address for LAN/WAN interface, and Dynamic Host Configuration Protocol (DHCP) logs.
Platforms Affected:
- D-Link, D-Link DI-804 router 4.68
Remedy:
No remedy available as of November 22, 2008.
Consequences:
Obtain Information
References:
- BugTraq Mailing List, Thu Aug 22 2002 - 15:22:05 CDT, Re: possible exploit: D-Link DI-804 unauthorized DHCP releasefrom WAN at http://archives.neohapsis.com/archives/bugtraq/2002-08/0232.html.
- BID-5544: D-Link Remote Administration Arbitrary DHCP Address Release Vulnerability
- BID-5553: D-Link Remote Administration Information Leakage Vulnerability
- CVE-2002-1069: The remote administration capability for the D-Link DI-804 router 4.68 allows remote attackers to bypass authentication and release DHCP addresses or obtain sensitive information via a direct web request to the pages (1) release.htm, (2) Device Status, or (3) Device Information.
Reported:
Aug 22, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net