Intrusion Prevention

D-Link.DIR-850L.Wireless.AC1200.Route.Authentication.Bypass

Description

This indicates an attack attempt to exploit an Authentication Bypass Vulnerability in D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router.
A remote, unauthenticated attacker can exploit this vulnerability by directly visiting certain specific pages. Successful exploitation could result in the bypassing of authentication, allowing an attacker to access sensitive information from vulnerable systems.

Affected Products

D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Hardware Version A1 with Firmware Version from 1.02 to 2.06
D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Hardware Version B1 with Firmware Version from 1.02 to 2.06

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
ftp://ftp2.dlink.com/PRODUCTS/DIR-850L/REVA/DIR-850L_REVA_RELEASE_NOTES_v1.21B08_ICJI_WW_BETA.pdf
ftp://ftp2.dlink.com/PRODUCTS/DIR-850L/REVB/DIR-850L_REVB_RELEASE_NOTES_v2.221B03_IBM8_WW_BETA.pdf

CVE References

CVE-2018-9032

Other References

44378