Vulnerability Database
299,038
Total vulnerabilities in the database
CVE-2015-1187
The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.
| Software | From | Fixed in |
|---|---|---|
| trendnet / tew-731br_firmware | 2.01-b01 | 2.01-b01.x |
| trendnet / tew-711br_firmware | 1.00-b31 | 1.00-b31.x |
| trendnet / tew-810dr_firmware | 1.00-b19 | 1.00-b19.x |
| trendnet / tew-813dru_firmware | 1.00-b23 | 1.00-b23.x |
| dlink / dir-626l_firmware | 1.04-b04 | 1.04-b04.x |
| dlink / dir-636l_firmware | 1.04 | 1.04.x |
| dlink / dir-808l_firmware | 1.03-b05 | 1.03-b05.x |
| dlink / dir-810l_firmware | 1.01-b04 | 1.01-b04.x |
| dlink / dir-810l_firmware | 2.02-b01 | 2.02-b01.x |
| dlink / dir-820l_firmware | 1.02-b10 | 1.02-b10.x |
| dlink / dir-820l_firmware | 1.05-b03 | 1.05-b03.x |
| dlink / dir-820l_firmware | 2.01-b02 | 2.01-b02.x |
| dlink / dir-826l_firmware | 1.00-b23 | 1.00-b23.x |
| dlink / dir-830l_firmware | 1.00-b07 | 1.00-b07.x |
| dlink / dir-836l_firmware | 1.01-b03 | 1.01-b03.x |
| dlink / dir-651_firmware | 1.10na-b02 | 1.10na-b02.x |
- http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html
- http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html
- http://seclists.org/fulldisclosure/2015/Mar/15
- http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10052
- http://www.securityfocus.com/bid/72848
- https://github.com/darkarnium/secpub/tree/master/Multivendor/ncc2
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime