• November 02, 2024, 07:25:36 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Pages: [1] 2 3

Author Topic: D-Link Products - Security Advisory Information  (Read 72266 times)

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
D-Link Products - Security Advisory Information
« on: November 20, 2013, 08:56:29 AM »

All D-Link product Security Advisories will be located here:
D-Link Security Advisory Information
D-Link Current uPnP Security Status

If you have a concern or need immediate help, please phone contact your regional D-Link support office and inquire with in about your concerns.

Thank you.
« Last Edit: September 19, 2014, 10:43:05 AM by FurryNutz »
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #1 on: September 26, 2014, 07:59:19 AM »

9/24/2014: A new advisory has been added...
Shell Shock

Doesn't seem to effect Cameras or Routers at this time. D-Link is investigating further on what other products may be.
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10044

Basic Info about Shell Shock:
In order to take advantage of this exploit the hacker has to send a command line to an environment variable using the envoke command. This is easy to do if you have access to an SSH shell but that typically would require username and password knowledge. Cameras and routers don't have SSH access nor BASH shell utilities.

If users are concerned about any of there products being effected by this, please review the information linked to this issue or phone contact your regional D-Link support office immediately. We find that phone contact has better immediate results over using email.

Keep clam and chive on!  :)
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #3 on: March 10, 2015, 09:12:40 AM »

Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #4 on: April 13, 2015, 12:44:27 PM »

Security Advisory

Please update your router:
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10054

Please follow this for updating FW:
 FW Update Process

For router models not yet having a fix, please be patient as they are working on the solutions for each model. Please keep checking back to see if links to FW files have been posted. If you have immediate needs for help and information, we recommend that you phone contact your regional D-Link support office and ask for help and information regarding this. We find that phone contact has better immediate results over using email.
Let us know how it goes please.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #5 on: May 21, 2015, 10:35:04 AM »

NetUSB and suspected vulnerability:
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10057
http://www.kb.cert.org/vuls/id/BLUU-9VFUFZ

Kcodes NetUSB :: Buffer Overflow
Publication ID: SAP10057   
Related Products:
DAP-1350
DGL-4500
DHP-1320
DIR-615
DIR-628
DIR-632
DIR-635
DIR-655
DIR-685
DIR-825
DIR-855
« Last Edit: November 10, 2016, 07:45:20 AM by FurryNutz »
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

PacketTracer

  • Level 4 Member
  • ****
  • Posts: 441
More than fifty vulnerabilities in D-Link NAS and NVR devices
« Reply #6 on: May 30, 2015, 07:12:25 AM »

More than fifty vulnerabilities in D-Link NAS and NVR devices:

Sources: SEARCH-LAB and full report.
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: More than fifty vulnerabilities in D-Link NAS and NVR devices
« Reply #7 on: May 30, 2015, 11:46:02 AM »

Thank you PT, I'll sent this off to see what the status is.

 ::)

More than fifty vulnerabilities in D-Link NAS and NVR devices:

Sources: SEARCH-LAB and full report.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: More than fifty vulnerabilities in D-Link NAS and NVR devices
« Reply #8 on: June 01, 2015, 09:20:45 AM »

Posted to the Security site now and seems to be actively working on fixing it for the DNS models effected:
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10058


More than fifty vulnerabilities in D-Link NAS and NVR devices:

Sources: SEARCH-LAB and full report.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #9 on: June 13, 2015, 01:40:51 PM »

New Security issue posted. Mostly effecting DSL modems only:
http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10059
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #10 on: December 02, 2015, 08:26:10 AM »

FYI, the Security site is not public anymore. Not sure of reason for change. Any issues seen or questions needed answered, please fill out the Security submission form, post here in the forums or phone contact your regional D-Link support office for immediate help and information.

Thank you.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

RYAT3

  • Level 10 Member
  • *****
  • Posts: 2254
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: D-Link Products - Security Advisory Information
« Reply #13 on: June 06, 2016, 07:56:25 AM »

Ya, I hope they will correctly quickly. TV is a great program for remoting. Hate to see it go bad.  :-\
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

ccwow

  • Level 1 Member
  • *
  • Posts: 2
Re: D-Link Products - Security Advisory Information
« Reply #14 on: July 09, 2016, 04:55:46 AM »

Any word or updates on this vulnerability:

http://news.softpedia.com/news/d-link-vulnerability-affects-over-120-products-400-000-devices-506104.shtml

How is it being addressed?
Logged
Pages: [1] 2 3