Vulnerability Description
The remote administration capability for the D-Link DI-804 router 4.68 allows remote attackers to bypass authentication and release DHCP addresses or obtain sensitive information via a direct web request to the pages (1) release.htm, (2) Device Status, or (3) Device Information.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| D-Link | Di-804 | 4.68 |
References
- http://marc.info/?l=bugtraq&m=103004834131542&w=2
- http://online.securityfocus.com/archive/1/288584
- http://www.iss.net/security_center/static/9967.phpPatchVendor Advisory
- http://www.iss.net/security_center/static/9969.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/5544PatchVendor Advisory
- http://www.securityfocus.com/bid/5553PatchVendor Advisory
- http://marc.info/?l=bugtraq&m=103004834131542&w=2
- http://online.securityfocus.com/archive/1/288584
- http://www.iss.net/security_center/static/9967.phpPatchVendor Advisory
- http://www.iss.net/security_center/static/9969.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/5544PatchVendor Advisory
- http://www.securityfocus.com/bid/5553PatchVendor Advisory
FAQ
What is CVE-2002-1069?
CVE-2002-1069 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The remote administration capability for the D-Link DI-804 router 4.68 allows remote attackers to bypass authentication and release DHCP addresses or obtain sensitive information via a direct web requ...
How severe is CVE-2002-1069?
CVE-2002-1069 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1069?
Check the references section above for vendor advisories and patch information. Affected products include: D-Link Di-804.