• November 29, 2020, 05:45:53 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  


This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: DIR-880L FW v1.08 Build 06 Beta - Official Security Release - WW Region!  (Read 3735 times)


  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49370
  • D-Link Global Forum Moderator
    • Router Troubleshooting

Firmware:   v1.08 Build 06   02/28/2018   WW Region!
Revision Info:   
Problems Resolved:
Reported: 01/14/2018
Discovered by: Kaixiang Zhang of Qihoo 360 Gear Team

CVE-2018-6527 - XSS vulnerability in htdocs/webinc/js/adv_parent_ctrl_map.php allowing remote attackers to read a cookie via a crafted deviceid parameter to soap.cgi.

CVE-2018-6528 - XSS vulnerability in htdocs/webinc/body/bsc_sms_send.php allowing remote attackers to read a cookie via a crafted receiver parameter to soap.cgi

CVE-2018-6529 - XSS vulnerability in htdocs/webinc/js/bsc_sms_inbox.php allowing remote attackers to read a cookie via a crafted Treturn parameter to soap.cgi.

CVE-2018-6530 - OS command injection vulnerability in soap.cgi (soapcgi_main incgibin) allowing remote attackers to execute arbitrary OS commands via the service parameter.

1. None

NOTE: if your DIR-880L router is working with out any issues, it's recommended to keep the current version of FW that is loaded unless your are effected by one of the fixes. Use at your own risk.

Get it here:
NA Region:

Follow the >FW Update Process
« Last Edit: February 28, 2018, 02:04:18 PM by GreenBay42 »
Cable: 1Gb/50Mb>NetGear CAX80>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.