EIP-2026-101650

PRE-CVE

D-Link DSL-526B ADSL2+ AU_2.01 - Remote DNS Change

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101650. PoCs published by Todor Donev.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated remote DNS change vulnerability in D-Link DSL-526B ADSL2+ AU_2.01. It sends a crafted HTTP GET request to 'dnscfg.cgi' to modify the secondary DNS server without authentication.

Description

D-Link DSL-526B ADSL2+ AU_2.01 - Remote DNS Change

Exploits (1)

exploitdb WORKING POC
by Todor Donev · textwebappshardware
https://www.exploit-db.com/exploits/37241

This exploit demonstrates an unauthenticated remote DNS change vulnerability in D-Link DSL-526B ADSL2+ AU_2.01. It sends a crafted HTTP GET request to 'dnscfg.cgi' to modify the secondary DNS server without authentication.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target: D-Link DSL-526B ADSL2+ AU_2.01
No auth needed
Prerequisites: Network access to the target device
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026