|Category:||Web application abuses|
|Title:||D-Link Multiple Devices Backdoor|
|Summary:||Various D-Link DSL routers are susceptible to a remote authentication;bypass vulnerability.|
Various D-Link DSL routers are susceptible to a remote authentication
By setting the User-Agent header to 'xmlset_roodkcableoj28840ybtide', it is
possible to access the web interface without any authentication.
This vulnerability allows remote attackers to gain complete
administrative access to affected devices.
Various D-Link routers are affected.
Ask the Vendor for an update.
BugTraq ID: 62990|
Common Vulnerability Exposure (CVE) ID: CVE-2013-6026
CERT/CC vulnerability note: VU#248083
|Copyright||This script is Copyright (C) 2013 Greenbone Networks GmbH|
|This is only one of 75017 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.