Vulnerabilities > CVE-2019-14333 - Unspecified vulnerability in Dlink 6600-Ap Firmware and Dwl-3600Ap Firmware

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
dlink

Summary

An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is a pre-authenticated denial of service attack against the access point via a long action parameter to admin.cgi.

Vulnerable Configurations

Part Description Count
OS
Dlink
2
Hardware
Dlink
2

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/153840/dlink6600ap-xssdosdisclose.txt
idPACKETSTORM:153840
last seen2019-08-01
published2019-07-31
reporterSandstorm Security
sourcehttps://packetstormsecurity.com/files/153840/D-Link-6600-AP-XSS-DoS-Information-Disclosure.html
titleD-Link 6600-AP XSS / DoS / Information Disclosure