CVE-2024-33113 is a vulnerability in the D-LINK DIR-845L router that allows information disclosure

Channel:
United Arab Emirates Khalil Shreateh
Subscribers:
14,700
Published on ● Video Link: https://www.youtube.com/watch?v=p-5JaS5zzCI


Duration: 0:14
85 views
1

Vulnerability: CVE-2024-33113 (Information Disclosure)

Affected Device: D-LINK DIR-845L router (versions (bellow or =) v1.01KRb03)

Cause: Improper handling of the include() function in the bsc_sms_inbox.php file. Attackers can manipulate the $file variable to include unauthorized PHP scripts.

Impact: Attackers can potentially steal sensitive information from the router, including usernames and passwords. This could give them complete control over your network and the devices connected to it.

Recommendations:

Update your firmware: D-Link has likely released a firmware update that patches this vulnerability. Check their website for the latest firmware for your specific router model and update it immediately.
Change router password: Even if you update the firmware, it's a good practice to change your router's password to something strong and unique.
Here are some additional points to consider:

Public exploit code (Proof of Concept - PoC) might be available, making it easier for attackers to exploit this vulnerability.
This vulnerability allows remote attacks, so you don't need physical access to the router to exploit it.
If you're not comfortable updating the firmware yourself, consider seeking help from a network technician. Taking these steps will help protect your network from potential attacks.



Other Videos By Khalil Shreateh


2024-07-23MSN Messenger on Windows XP 🦋 #msnmessenger #windowsxp #2000s #y2k #early2000s #2000snostalgia
2024-07-22Remove copyright from the video, Erase Song feature
2024-07-22ازالة الحقوق من فيديو يوتيوب من خلال ميزة محو الأغنية بالذكاء الاصطناعي
2024-07-21حماية واتساب من خلال تعطيل معاينات الرابط
2024-07-21Enhanced WhatsApp privacy by Disabling link previews
2024-07-20View Facebook locked profile in full size
2024-07-17pinball for iphone
2024-07-12‎اسئلة غير منطقية للذكاء الاصطناعي الجزء الأول #شريتح #ذكاء_اصطناعي
2024-07-09الذكاء الاصطناعي يجعلنا نشعر بالحنين، هل مازلت تتذكر أجدادك؟
2024-06-30لاستخدام التطبيق ؛ بحث جوجل:شريتح تيكتوك استخبارات
2024-06-24CVE-2024-33113 is a vulnerability in the D-LINK DIR-845L router that allows information disclosure
2024-06-11John Wick: Chapter 4 - The Final Chapter VR Pistol Game (Meta Quest 2)
2024-06-10John Wick: Chapter 4 - The Final Chapter VR Pistol Game (Meta Quest 2)
2024-06-02here it is .. all tutorials available in my youtube channel , playlist “social media” ‎
2024-05-30Punch, Kick, Sweat: Get Fit with BODYCOMBAT!
2024-05-28Fortifying Your Business: Common Cybersecurity Threats and Defense Strategies
2024-05-27Unveiling the Dangers, Rewards, and Scams of Cloud Mining
2024-05-26افضل لعبة رياضة في الواقع الافتراضي على ميتا كويست Meta Quest best workout game
2024-05-26Snoop Dogg telling ya nothing but the truth ......
2024-05-23Chatgpt-4o chatting - Prt 1
2024-05-23الذكاء الاصطناعي يحل مكان المدرس الخصوصي والطبيب النفسي