CVE-2017-8417

HIGH

Dlink Dcs-1100 Firmware - Credentials Management

Title source: rule

Description

An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. The device requires that a user logging into the device provide a username and password. However, the device allows D-Link apps on the mobile devices and desktop to communicate with the device without any authentication. As a part of that communication, the device uses custom version of base64 encoding to pass data back and forth between the apps and the device. However, the same form of communication can be initiated by any process including an attacker process on the mobile phone or the desktop and this allows a third party to retrieve the device's password without any authentication by sending just 1 UDP packet with custom base64 encoding. The severity of this attack is enlarged by the fact that there more than 100,000 D-Link devices out there.

References (3)

Core 3

Core References

Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq

https://seclists.org/bugtraq/2019/Jun/8

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/153226/Dlink-DCS-1130-Command-Injection-CSRF-Stack-Overflow.html

Exploit, Third Party Advisory x_refsource_misc

https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Dlink_DCS_1130_security.pdf

View Exploit ZIP pw:eip

Scores

CVSS v3 8.8

EPSS 0.0623

EPSS Percentile 90.9%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-255

Status published

Products (2)

dlink/dcs-1100_firmware

dlink/dcs-1130_firmware

Published Jul 02, 2019

Tracked Since Feb 18, 2026