CVE-2015-1187

Published: Sep 21, 2017Modified: Apr 21, 2026CISA KEV

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to execute arbitrary code via the ping_addr parameter to ping.ccp.

Affected (18)

Products: Dlink: Dir 626l Firmware, Dir 636l Firmware, Dir 808l Firmware, Dir 810l Firmware, Dir 820l Firmware, Dir 826l Firmware, Dir 830l Firmware, Dir 836l Firmware, Dir 651 Firmware · Trendnet: Tew 731br Firmware, Tew 651br Firmware, Tew 652br Firmware, Tew 711br Firmware, Tew 810dr Firmware, Tew 813dru Firmware

9 products

6 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 626l Firmware	Version 1.04 b04

Running on/with	Platform Versions
Dlink Dir 626l	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 636l Firmware	Version 1.04

Running on/with	Platform Versions
Dlink Dir 636l	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 808l Firmware	Version 1.03 b05

Running on/with	Platform Versions
Dlink Dir 808l	All versions

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Dlink Dir 810l Firmware	Version 1.01 b04

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 810l Firmware	Version 2.02 b01

Running on/with	Platform Versions
Dlink Dir 810l	All versions

Configuration F

1 vulnerable

Vulnerable Software	Affected Versions
Dlink Dir 820l Firmware	Version 1.02 b10

Configuration G

1 vulnerable

Vulnerable Software	Affected Versions
Dlink Dir 820l Firmware	Version 1.05 b03

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 820l Firmware	Version 2.01 b02

Running on/with	Platform Versions
Dlink Dir 820l	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 826l Firmware	Version 1.00 b23

Running on/with	Platform Versions
Dlink Dir 826l	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 830l Firmware	Version 1.00 b07

Running on/with	Platform Versions
Dlink Dir 830l	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 836l Firmware	Version 1.01 b03

Running on/with	Platform Versions
Dlink Dir 836l	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 731br Firmware	Version 2.01 b01

Running on/with	Platform Versions
Trendnet Tew 731br	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Dlink Dir 651 Firmware	Version 1.10na b02

Running on/with	Platform Versions
Dlink Dir 651	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 651br Firmware	All versions

Running on/with	Platform Versions
Trendnet Tew 651br	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 652br Firmware	All versions

Running on/with	Platform Versions
Trendnet Tew 652br	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 711br Firmware	Version 1.00 b31

Running on/with	Platform Versions
Trendnet Tew 711br	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 810dr Firmware	Version 1.00 b19

Running on/with	Platform Versions
Trendnet Tew 810dr	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Trendnet Tew 813dru Firmware	Version 1.00 b23

Running on/with	Platform Versions
Trendnet Tew 813dru	All versions

Related CWEs

CWE-287

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (13)

http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html

Source: cve@mitre.org

Issue TrackingThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/131465/D-Link-TRENDnet-NCC-Service-Command-Injection.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://seclists.org/fulldisclosure/2015/Mar/15

Source: cve@mitre.org

Issue TrackingMailing ListThird Party Advisory

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10052

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/72848

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB Entry

https://github.com/darkarnium/secpub/tree/master/Multivendor/ncc2

Source: cve@mitre.org

Broken LinkIssue TrackingMitigationThird Party Advisory

http://packetstormsecurity.com/files/130607/D-Link-DIR636L-Remote-Command-Injection.html