Vulnerability Description
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware before 1.08B77 stores account passwords in cleartext, which allows local users to obtain sensitive information by reading the Users[#]["Password"] fields in /tmp/teamf1.cfg.ascii.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dlink | Dsr-150 Firmware | <= 1.08b29 |
| Dlink | Dsr-150 | - |
| Dlink | Dsr-250 Firmware | <= 1.08b39 |
| Dlink | Dsr-250 | - |
| Dlink | Dsr-1000N Firmware | <= 1.08b51 |
| Dlink | Dsr-1000N | - |
| Dlink | Dsr-150N Firmware | <= 1.05b48 |
| Dlink | Dsr-150N | - |
| Dlink | Dsr-500 Firmware | <= 1.08b51 |
| Dlink | Dsr-500 | - |
| Dlink | Dsr-1000 Firmware | <= 1.08b51 |
| Dlink | Dsr-1000 | - |
| Dlink | Dsr-250N Firmware | <= 1.08b39 |
| Dlink | Dsr-250N | - |
| Dlink | Dsr-500N Firmware | <= 1.08b51 |
| Dlink | Dsr-500N | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2013-7005?
CVE-2013-7005 is a vulnerability with a CVSS score of 4.9 (MEDIUM). D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware befo...
How severe is CVE-2013-7005?
CVE-2013-7005 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-7005?
Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dsr-150 Firmware, Dlink Dsr-150, Dlink Dsr-250 Firmware, Dlink Dsr-250, Dlink Dsr-1000N Firmware.