In October, the security researcher Craig Heffner discovered a backdoor vulnerability ( CVE-2013-6027 ), to some D-Link routers that allow cybercriminals to change a setting on the router without requiring the username or code access.
Last week, D-Link released one new version of Firmware for various vulnerable router models that shut down unauthorized administrator access backdoor.
Ο Heffner found that the web interface for some D-Link routers could be accessed if the user string for the program tours is set to xmlset_roodkcableoj28840ybtide .
Since last month, D-Link has been working with it Heffner and other security researchers, to learn more about the backdoor, and now the company has released the updates for the following models:
- DIR-100
- DIR-120
- DI-524
- D
- D
- DI-604 +
- DI-624S
- TM-G5240