• March 19, 2024, 04:07:20 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: DCS-934L - Cumulative Firmware Release Notes  (Read 10800 times)

JavaLawyer

  • BETA Tester
  • Level 15 Member
  • *
  • Posts: 12190
  • D-Link Global Forum Moderator
    • FoundFootageCritic
DCS-934L - Cumulative Firmware Release Notes
« on: February 17, 2015, 12:25:30 PM »

DCS-934L Cumulative Firmware Release Notes


Firmware: 1.07b01 - Date: 2/4/2015

  • [New Feature] New mydlink agent 2.0.18-b66
  • [Bug Fix] Fixed issue where device would not respond properly to portal commands under relay mode


Firmware: 1.01b03 - Date: 2/6/2015

  • [New Feature] Upgrade mydlink agent to v2.0.18-b61
  • [New Feature] Remove SSL, change to support TLS

Firmware: 1.00b02 - Date: 12/9/2014

  • First version
Logged
Find answers here: D-Link ShareCenter FAQ I D-Link Network Camera FAQ
There's no such thing as too many backups FFC

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: DCS-934L - Cumulative Firmware Release Notes
« Reply #1 on: September 26, 2016, 10:55:27 AM »

Firmware: v1.04b15 - Date: 9/26/2013

  • Problems Fixed:
    Fixed CSRF vulnerability for the camera’s web-UI (Exclude CGI APIs).
    Fixed the “RSA-CRT key leaks” vulnerability.
    Fixed the “LANDAP stack overflow“ vulnerability. (discovered by search SEARCH-LAB)
    Remove the “Arbitrary file upload interface” vulnerability. (Discovered by search SEARCH-LAB).
    Fixed an issue that Time zone setting for Minsk should be GMT+3.
    Fixed vulnerability - Authenticated Arbitrary File Upload with Root Privileges. (discovered by IOActive Security)
    Fixed vulnerability - Authenticated Root OS Command Injection in File Upload. (discovered by IOActive Security)
    Fixed an XSS vulnerability - Stored XSS in User Name. (discovered by IOActive Security) 
    Fixed an XSS vulnerability - Reflected XSS in HTTP Host Header. (discovered by IOActive Security)
  • New Features:
    1.   Upgrade mydlink agent to 2.1.0-b27.
    2.   Change the HTTPs self-signed certificate to SHA2 algorithms.
    3.   Support Mydlink UID mechanism (mdb get dev_uid)
    4.   Change the support page hyperlink of Firmware Upgrade web-UI to www.dlink.com.
    5.   Updated OpenSSL to v0.9.8o.
    6.   Remove mDNSResponder daemon on the unit.
    7.   Remove the Bonjour settings from the Network Setup web-UI.
    8.   Change the default system time to 2016-01-01
    9.   Update the years in the copyright statement for IP Camera’s web-UI to 2016.
    10.   Add authentication to CGI /config/stream_info.cgi.
    11.   Offer the password validation on console port. (Console’s Password is synchronized with the admin’s password)
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.