April 25, 2014

Multiple Vulnerabilities in D-Link DIR-615

Multiple vulnerabilities in D-Link DIR-615 Wireless N 300 router have been discovered.

D-link DIR-615 Device Information and Configuration Vulnerability

General device configuration and information such as UDN, services, service ID, Control URL and other detailed information from a D-Link DIR-615 Wireless N 300 router can be accessed by fetching root.sxml using a web browser. More

D-link DIR-615 Open Ports Vulnerability

TCP ports 4444, 8099, 8456, 8832 and 9393 are open in D-Link DIR-615 Wireless N 300 router. The above mentioned ports could be used for a remote connection by HTTP or Telnet protocols. More

D-link DIR-615 User Name and Password Security Mechanisms

D-Link DIR-615 console login page contains information about the security mechanism used to encrypt the user name and passwords. More