Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com

CVE-2015-2049

Description

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

POC

Reference

- http://www.kb.cert.org/vuls/id/377348

- https://www.exploit-db.com/exploits/39192/

Github

- https://github.com/ARPSyndicate/cvemon