Arbitrary Code Execution via Unrestricted File Upload in D-Link DCS-931L Firmware 1.04 and Earlier

Arbitrary Code Execution via Unrestricted File Upload in D-Link DCS-931L Firmware 1.04 and Earlier

CVE-2015-2049 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.

Learn more about our User Device Pen Test.