Full Disclosure mailing list archives
Re: Medium security hole affecting DSL-G624T
From: Tim Brown <timb () nth-dimension org uk>
Date: Thu, 3 May 2007 23:59:35 +0100
On Thursday 03 May 2007 23:19:55 3APA3A wrote:
Not exactly, read first link carefully: Tested on D-Link DSL-G624T Version: Firmware Version : V3.00B01T01.YA-C.20060616 Discovered by: Jose Ramon Palanco: jose.palanco(at)eazel(dot).es
Fair enough I stand corrected but it's been there since 1.something, so either way it's not new. I shall be more careful to read responses in future :). To categorically state what I mentioned in the original advisory, "I do not make any claim to having discovered the directory traversal first, I simply want the bug fixed".
Jose mentions both directory traversal and 3 examples of crossite scripting. Crossite scripting examples are different from yours though and require POST request. Your CSS is easier to exploit.
Exactly. Although SF is now attributing BID 23802 (my XSS) to Jose as well :)
In fact, at least Russian D-Link support is very responsive to any bug report, but it seems like only way to get a response is to post a problem on their forum.
So it seems, and there lies the problem, the UK forum at least does not function in either Firefox or Konqueror. I like vendors who respond by email and I like vendors who respond[1] quickly even more :). [1] such as our alternate discussion -- Tim Brown <mailto:timb () nth-dimension org uk> <http://www.nth-dimension.org.uk/> _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Medium security hole affecting DSL-G624T Tim Brown (May 03)
- Re: Medium security hole affecting DSL-G624T 3APA3A (May 03)
- Re: Medium security hole affecting DSL-G624T Tim Brown (May 04)
- Re: Medium security hole affecting DSL-G624T 3APA3A (May 03)
- Re: Medium security hole affecting DSL-G624T Tim Brown (May 04)
- Re: Medium security hole affecting DSL-G624T Tim Brown (May 04)
- Re: Medium security hole affecting DSL-G624T 3APA3A (May 03)