ET EXPLOIT D-Link DIR-825 R1 Web Interface RCE (CVE-2020-29557)

SID: 2034280Rev: 20 viewsHistory

Sourceet/open

CreatedOctober 28, 2021

UpdatedMay 22, 2024

Classificationattempted-admin

alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET EXPLOIT D-Link DIR-825 R1 Web Interface RCE (CVE-2020-29557)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/check_browser?lang="; nocase; fast_pattern; isdataat:100,relative; reference:url,shaqed.github.io/dlink/; reference:cve,2020-29557; classtype:attempted-admin; sid:2034280; rev:2; metadata:attack_target Networking_Equipment, created_at 2021_10_28, cve CVE_2020_29557, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag CISA_KEV, updated_at 2024_05_22;)

References

url	shaqed.github.io/dlink/
cve	2020-29557

Metadata

attack targetNetworking_Equipment

created at2021_10_28

cveCVE-2020-29557

deploymentInternal

confidenceHigh

signature severityMajor

tagCISA_KEV

updated at2024_05_22

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!