Go homepage(回首页) Upload pictures (上传图片) Write articles (发文字帖)
The author:(作者)aaapublished in(发表于) 2013/12/6 12:32:52 The official new patches, finally repair D - Link the back door of the router
Official new patches, and finally fix the back door of the d-link router-DLink,DLink firmware-IT router vulnerability news Official new patches, back door to finally fix d-link router
Router, as a daily Internet access a key hardware, security risks cannot be ignored, d-link router vulnerability exposure before the back door, but waited more than four months later, d-link official finally dismissed, has released a new firmware update, involving more than their own model of router equipment terminal users are recommended to update firmware version as soon as possible.
Security officers found D-Link before 2760N router, the Web interface vulnerable to cross-site scripting attacks (XSS). While fellow Liad Mizrachi found these vulnerabilities, and stated that in August, September and October have informed D-Link, but D-Link does not respond.
D-link today would be on the Security page of the official website confirmed the safety of home routers: thed-link router to use authentication for administrative access to specific user-agent string .
The affected products are: DIR-100, DIR-120, DI-524, DI-524UP, and DI-604S, DI-604UP, DI-604+, DI-624S and TM-G5240 these devices.
Appendix: related products, the latest firmware downloads:
Model NameHW VersionCurrent FW VersionNew FW Version FixDIR-100A11.131.14B02DIR-120A11.03/1.04RU1.05B02DI-524E3/E45.125.13B01DI-524UPA1/A21.071.08B02DI-604UPA11.031.04B02DI-604+A11.11.11B03DI-624SB1/B21.111.12B02TM-G5240A14.00B294.01B02
官方新补丁,终于修复D-Link路由器的后门 - DLink,DLink固件,路由器漏洞 - IT资讯官方新补丁,终于修复D-Link路由器的后门
路由器,作为日常上网的一个重要硬件,安全风险不容忽视,D-Link之前就曝光路由器漏洞后门,但苦等了四个多月后,D-Link官方终于理睬了,发布了新的固件更新,涉及自家多个产品型号的路由器设备终端,建议用户尽早更新固件版本。
之前安全人员发现D-Link 2760N路由器,在Web界面易遭受到一些跨站脚本攻击(XSS)。同时研究员Liad Mizrachi发现了这些漏洞,并表示在8月、9月、10月曾就此事知会D-Link,但D-Link并未回应。
今天D-Link就在官网的安全页面上确认了自家路由器的安全问题:D-Link的路由器使用特定的User-Agent字符串进行身份验证管理访问权限。
受影响的产品有:DIR-100、DIR-120、DI-524、DI-524UP、DI-604S、DI-604UP、DI-604+、DI-624S和TM-G5240这些设备。
附:相关产品的最新固件下载:
Model Name HW Version Current FW Version New FW Version Fix DIR-100 A1 1.13 1.14B02 DIR-120 A1 1.03/1.04RU 1.05B02 DI-524 E3/E4 5.12 5.13B01 DI-524UP A1/A2 1.07 1.08B02 DI-604UP A1 1.03 1.04B02 DI-604+ A1 1.10 1.11B03 DI-624S B1/B2 1.11 1.12B02 TM-G5240 A1 4.00B29 4.01B02
赞