CVE-2019-20217

D-Link DIR-859 1.05 and 1.06B01 Beta01 devices allow remote attackers to execute arbitrary OS commands via the urn: to the M-SEARCH method in ssdpcgi() in /htdocs/cgibin, because SERVER_ID is mishandled. The value of the urn: service/device is checked with the strstr function, which allows an attacker to concatenate arbitrary commands separated by shell metacharacters.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:dlink:dir-859_firmware:1.05:*:*:*:*:*:*:*
cpe:2.3:o:dlink:dir-859_firmware:1.06b01:beta01:*:*:*:*:*:*
cpe:2.3:h:dlink:dir-859:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:38

Type Values Removed Values Added
References () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae - () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae -
References () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35 - () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35 -
References () https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147 - Patch, Vendor Advisory () https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10147 - Patch, Vendor Advisory

07 Nov 2023, 03:08

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae', 'name': 'https://medium.com/@s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • {'url': 'https://medium.com/@s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35', 'name': 'https://medium.com/@s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35', 'tags': ['Exploit', 'Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-es-e11ca6168d35 -
  • () https://medium.com/%40s1kr10s/d-link-dir-859-rce-unauthenticated-cve-2019-20216-cve-2019-20217-en-6bca043500ae -

Information

Published : 2020-01-29 03:15

Updated : 2024-11-21 04:38


NVD link : CVE-2019-20217

Mitre link : CVE-2019-20217

CVE.ORG link : CVE-2019-20217


JSON object : View

Products Affected

dlink

  • dir-859_firmware
  • dir-859
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')