D-Link DCS跨站伪造请求漏洞

admin

0
文章

0
评论

2023-12-02 16:09:14 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

D-Link DCS跨站伪造请求漏洞

CVE编号

CVE-2017-7852

利用情况

暂无

补丁情况

N/A

披露时间

2017-04-24

漏洞描述

D-Link DCS-933L等都是友讯（D-Link）公司的无线监控摄像头设备。多款D-Link DCS摄像头中存在安全漏洞。攻击者可借助特意的Flash文件利用该漏洞检索Live Feeds或Camera中的信息，添加新用户或更改设备。

解决建议

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接:https://www.qualys.com/2017/02/22/qsa-2017-02-22/qsa-2017-02-22.pdf

参考链接
https://www.qualys.com/2017/02/22/qsa-2017-02-22/qsa-2017-02-22.pdf

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	系统	d-link	dcs-2132l_firmware	*		Up to (including) 1.08.01
	运行在以下环境
	系统	d-link	dcs-2132l_firmware	*		Up to (including) 2.12.00
	运行在以下环境
	系统	d-link	dcs-2136l_firmware	*		Up to (including) 1.04.01
	运行在以下环境
	系统	d-link	dcs-2210l_firmware	*		Up to (including) 1.03.01
	运行在以下环境
	系统	d-link	dcs-2230l_firmware	*		Up to (including) 1.03.01
	运行在以下环境
	系统	d-link	dcs-2310l_firmware	*		Up to (including) 1.08.01
	运行在以下环境
	系统	d-link	dcs-2310l_firmware	*		Up to (including) 2.03.00
	运行在以下环境
	系统	d-link	dcs-2330l_firmware	*		Up to (including) 1.13.00
	运行在以下环境
	系统	d-link	dcs-2332l_firmware	*		Up to (including) 1.08.01
	运行在以下环境
	系统	d-link	dcs-2530l_firmware	*		Up to (including) 1.00.21
	运行在以下环境
	系统	d-link	dcs-5000l_firmware	*		Up to (including) 1.02.02
	运行在以下环境
	系统	d-link	dcs-5009l_firmware	*		Up to (including) 1.07.05
	运行在以下环境
	系统	d-link	dcs-5010l_firmware	*		Up to (including) 1.13.05
	运行在以下环境
	系统	d-link	dcs-5020l_firmware	*		Up to (including) 1.13.05
	运行在以下环境
	系统	d-link	dcs-5025l_firmware	*		Up to (including) 1.02.10
	运行在以下环境
	系统	d-link	dcs-5029l_firmware	*		Up to (including) 1.12.00
	运行在以下环境
	系统	d-link	dcs-5030l_firmware	*		Up to (including) 1.01.06
	运行在以下环境
	系统	d-link	dcs-5222l__firmware	*		Up to (including) 2.12.00
	运行在以下环境
	系统	d-link	dcs-6010l_firmware	*		Up to (including) 1.15.01
	运行在以下环境
	系统	d-link	dcs-6212l_firmware	*		Up to (including) 1.00.12
	运行在以下环境
	系统	d-link	dcs-7000l_firmware	*		Up to (including) 1.04.00
	运行在以下环境
	系统	d-link	dcs-7010l_firmware	*		Up to (including) 1.08.01
	运行在以下环境
	系统	d-link	dcs-930l_firmware	*		Up to (including) 1.15.04
	运行在以下环境
	系统	d-link	dcs-930l_firmware	*		Up to (including) 2.13.15
	运行在以下环境
	系统	d-link	dcs-931l_firmware	*		Up to (including) 1.13.05
	运行在以下环境
	系统	d-link	dcs-932l_firmware	*		Up to (including) 1.13.04
	运行在以下环境
	系统	d-link	dcs-932l_firmware	*		Up to (including) 2.13.15
	运行在以下环境
	系统	d-link	dcs-933l_firmware	*		Up to (including) 1.13.05
	运行在以下环境
	系统	d-link	dcs-934l_firmware	*		Up to (including) 1.04.15
	运行在以下环境
	系统	d-link	dcs-942l_firmware	*		Up to (including) 1.27
	运行在以下环境
	系统	d-link	dcs-942l_firmware	*		Up to (including) 2.11.03
	运行在以下环境
硬件	d-link	dcs-2132l	-	-
运行在以下环境
硬件	d-link	dcs-2136l	-	-
运行在以下环境
硬件	d-link	dcs-2210l	-	-
运行在以下环境
硬件	d-link	dcs-2230l	-	-
运行在以下环境
硬件	d-link	dcs-2310l	-	-
运行在以下环境
硬件	d-link	dcs-2330l	-	-
运行在以下环境
硬件	d-link	dcs-2332l	-	-
运行在以下环境
硬件	d-link	dcs-2530l	-	-
运行在以下环境
硬件	d-link	dcs-5000l	-	-
运行在以下环境
硬件	d-link	dcs-5009l	-	-
运行在以下环境
硬件	d-link	dcs-5010l	-	-
运行在以下环境
硬件	d-link	dcs-5020l	-	-
运行在以下环境
硬件	d-link	dcs-5025l	-	-
运行在以下环境
硬件	d-link	dcs-5029l	-	-
运行在以下环境
硬件	d-link	dcs-5030l	-	-
运行在以下环境
硬件	d-link	dcs-5222l_	-	-
运行在以下环境
硬件	d-link	dcs-6010l	-	-
运行在以下环境
硬件	d-link	dcs-6212l	-	-
运行在以下环境
硬件	d-link	dcs-7000l	-	-
运行在以下环境
硬件	d-link	dcs-7010l	-	-
运行在以下环境
硬件	d-link	dcs-930l	-	-
运行在以下环境
硬件	d-link	dcs-931l	-	-
运行在以下环境
硬件	d-link	dcs-932l	-	-
运行在以下环境
硬件	d-link	dcs-933l	-	-
运行在以下环境
硬件	d-link	dcs-934l	-	-
运行在以下环境
硬件	d-link	dcs-942l	-	-