• September 19, 2019, 08:05:08 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: New - DCS-933L Rev A - Firmware v1.15 B01 Comments & Observations  (Read 588 times)

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 47759
  • D-Link Global Forum Moderator
    • Router Troubleshooting

This update is in regards to >CVE-2019-10999 :: Authenticated Buffer Overflow (Various DCS Cameras)

D-Link posted DCS-933L Rev A firmware version,which can be downloaded from >DCS-933L Rev A  - Firmware v1.15 B01 Download.

Problems Fixed
1. Add CSRF protection for FTP setting.
2. Remove crossdomain.xml to fix a security vulnerability.
3. Fix an issue where sending long password on password field of html page.
4. Fix an issue that when set motion sensitivity to 0%, the motion alarm still occurs.
5. Fix an authenticated buffer overflow vulnerability issue.

New Features
1. Update Mydlink Agent to v2.2.0-b63.
2. The default system time is changed to 2019-01-01.
3. Re-sign the ActiveX plugin with the new certificate
4. Re-sign the Java Applet with the new certificate
5. Re-sign the macOS plugin with the new certificate
6. Support digest authentication for Web UI
7. Upgrade MatrixSSL to v3.9.3
8. Add XSS protection mechanism for CGI command.
9. Change the open source to GPLv2 terms

Please post your comments and observations as a reply to this thread.

 :)  ;)  :)
Logged
Cable:200mb/10Mb>NetGear C7800>DIR-882>DGS-1100>HP 24pt Gb Switch. COVR-3902/2202/1203,DIR-2680,890L,882,880L,868L,DNR-202L,DNS-345x2,DCS-933L,936L and 960L.
Go Here>Router Troubleshooting