Release date:
Updated on: 2011-11-25
Affected Systems:
D-Link DIR-685
Description:
--------------------------------------------------------------------------------
Bugtraq id: 50033
Cve id: CVE-2011-4507
DIR-685 is a wireless router.
D-Link DIR-685 cannot enable encrypted wireless connections at heavy network loads, which remote attackers can exploit to connect to affected devices without authentication.
When the D-Link DIR-685 Xtreme N Storage Router is configured with WPA/WPA2 and AES password with PSK, the wireless connection of the router remains open unencrypted before the device restarts.
<* Source: Jerry Decime
Link: http://www.kb.cert.org/vuls/id/924307
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
D-Link
------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.dlink.com/