CVE Vulnerabilities

CVE-2004-0615

Published: Dec 06, 2004 | Modified: Apr 26, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.1 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in D-Link DI-614+ SOHO router running firmware 2.30, and DI-704 SOHO router running firmware 2.60B2, and DI-624, allows remote attackers to inject arbitrary script or HTML via the DHCP HOSTNAME option in a DHCP request.

Affected Software

Name Vendor Start Version End Version
Di-614+ D-link 2.30 (including) 2.30 (including)
Di-704p D-link 2.60b2 (including) 2.60b2 (including)
Di-624 Dlink * 1.28 (including)

References