QwikSec

Security Database

CVE

CWE

Training

CVE-2019-20216

Published: Jan 29, 2020

Modified: Aug 5, 2024

PUBLISHED

Description

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi() in /htdocs/cgibin, because REMOTE_PORT is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attacker to concatenate arbitrary commands separated by shell metacharacters.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147

x_refsource_CONFIRM

https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae

x_refsource_MISC

https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.