Back to KEVs

CVE-2013-6026

The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, and TM-G5240 routers; Planex BRL-04R, BRL-04UR, and...

Basic Information

CVE State
PUBLISHED
Reserved Date
October 04, 2013
Published Date
October 19, 2013
Last Updated
September 16, 2024
Vendor
D-Link, Planex, Alpha Networks
Product
DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, TM-G5240, BRL-04R, BRL-04UR, BRL-04CW
Description
The web interface on D-Link DIR-100, DIR-120, DI-624S, DI-524UP, DI-604S, DI-604UP, DI-604+, and TM-G5240 routers; Planex BRL-04R, BRL-04UR, and BRL-04CW routers; and Alpha Networks routers allows remote attackers to bypass authentication and modify settings via an xmlset_roodkcableoj28840ybtide User-Agent HTTP header, as exploited in the wild in October 2013.
Tags
edge

CVSS Scores

CVSS v2.0

10.0

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploit Status

Exploited in the Wild
Yes (2013-10-19 10:00:00 UTC) Source

References

http://www.devttys0.com/2013/10/reverse-engineering-a-d-link-backdoor/ http://www.dlink.com/uk/en/support/security http://www.kb.cert.org/vuls/id/248083

Known Exploited Vulnerability Information

Source Added Date
CVE 2013-10-19 10:00:00 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel