D-Link DIR-605L and DIR-619L Information Disclosure Vulnerability via DHCP Connection Status Handler

A vulnerability allowing information disclosure has been identified in D-Link DIR-605L and DIR-619L routers, specifically in the versions 2.06B01 and 2.13B01. The issue arises from improper access control in the DHCP Connection Status Handler, particularly within the wan_connection_status.asp file. This vulnerability allows remote attackers to access sensitive network information without authentication, exploiting a function that is no longer supported by the manufacturer.

Impact

Exploitation of this vulnerability leads to unauthorized access to sensitive network information, including details about active DHCP clients, internal IP addresses, MAC addresses, hostnames, lease status of connected devices, WAN and LAN status information, and wireless configuration status.

Reproduction

The vulnerability can be reproduced by accessing the wan_connection_status.asp page without any authentication. This can be done by sending a request to the page, which will then return sensitive information such as the WAN IP address, subnet mask, default gateway, DNS configuration, interface uptime, LAN IP address, and wireless configuration status.

Remediation

It is recommended to apply restrictive firewalling to mitigate this vulnerability.