Vulnerabilities > CVE-2015-2049 - Unspecified vulnerability in Dlink Dcs-931L Firmware

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

dlink

exploit available

metasploit

NVD

Published: 2015-02-23

Updated: 2023-04-26

Summary

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

Vulnerable Configurations

Part	Description	Count
OS	Dlink Dlink DCS 931L Firmware *	1
Hardware	Dlink Dlink DCS 931L -	1

Exploit-Db

description	D-Link DCS-931L File Upload. CVE-2015-2049. Webapps exploit for hardware platform
file	exploits/hardware/webapps/39192.rb
id	EDB-ID:39192
last seen	2016-02-04
modified	2016-01-07
platform	hardware
port
published	2016-01-07
reporter	metasploit
source	https://www.exploit-db.com/download/39192/
title	D-Link DCS-931L File Upload
type	webapps

Metasploit

description	This module exploits a file upload vulnerability in D-Link DCS-931L network cameras. The setFileUpload functionality allows authenticated users to upload files to anywhere on the file system, allowing system files to be overwritten, resulting in execution of arbitrary commands. This module has been tested successfully on a D-Link DCS-931L with firmware versions 1.01_B7 (2013-04-19) and 1.04_B1 (2014-04-21). D-Link DCS-930L, DCS-932L, DCS-933L models are also reportedly affected, but untested.
id	MSF:EXPLOIT/LINUX/HTTP/DLINK_DCS931L_UPLOAD
last seen	2020-06-01
modified	2019-01-10
published	2016-01-05
references	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2049 https://tangiblesecurity.com/index.php/announcements/tangible-security-researchers-notified-and-assisted-d-link-with-fixing-critical-device-vulnerabilities http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10049
reporter	Rapid7
source	https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/linux/http/dlink_dcs931l_upload.rb
title	D-Link DCS-931L File Upload

Packetstorm

data source	https://packetstormsecurity.com/files/download/135152/dlink_dcs931l_upload.rb.txt
id	PACKETSTORM:135152
last seen	2016-12-05
published	2016-01-06
reporter	Brendan Coles
source	https://packetstormsecurity.com/files/135152/D-Link-DCS-931L-Arbitrary-File-Upload.html
title	D-Link DCS-931L Arbitrary File Upload

data source	https://packetstormsecurity.com/files/download/138597/bsnlteracom-upload.txt
id	PACKETSTORM:138597
last seen	2016-12-05
published	2016-09-03
reporter	Ajay Gowtham
source	https://packetstormsecurity.com/files/138597/BSNL-Teracom-Router-Firmware-Rewrite-Link-Modification.html
title	BSNL Teracom Router Firmware Rewrite / Link Modification

Summary

Vulnerable Configurations

Exploit-Db

Metasploit

Packetstorm

References