CVE-2019-17621
CVE-2019-17621
In short
A D-Link router has a critical flaw in its UPnP service that lets anyone on the network run commands with full system privileges without needing a password. An attacker can exploit this by sending a specially crafted request to take complete control of the router.
Technical detail
CWE-78 command injection vulnerability in the /gena.cgi UPnP endpoint allows unauthenticated remote code execution as root via malformed HTTP SUBSCRIBE requests. Attack requires network access but no authentication; successful exploitation grants full system control of the affected D-Link DIR-859 router (versions 1.05, 1.06B01 Beta01).
Summary generated and translated by AI from the official description.
The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted HTTP SUBSCRIBE request to the UPnP service when connecting to the local network.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 2
githubgithub.com/Squirre17/CVE-2019-17621★ 3cve_referencepacketstormsecurity.com/files/156054/D-Link-DIR-859-Unauthenticated-Remote-Command-Execution.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/156054/D-Link-DIR-859-Unauthenticated-Remote-Command-Execution.htmlhttps://medium.com/%40s1kr10s/d-link-dir-859-rce-unautenticated-cve-2019-17621-en-d94b47a15104https://medium.com/%40s1kr10s/d-link-dir-859-rce-unautenticated-cve-2019-17621-es-fad716629ff9https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10146https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-17621https://www.dlink.com/en/security-bulletinhttps://www.ftc.gov/system/files/documents/cases/dlink_proposed_order_and_judgment_7-2-19.pdf