Correction of the typo:
"An authenticated user can visit the page atbox.htm" should be "An
unauthenticated user can visit the page atbox.htm"
From: Tyler Cui
Sent: Monday, 17 December 2018 12:09 AM
To: fulldisclosure@seclists.org
Subject: [CVE-2018-18007] atbox.ht
[Vendor]
us.dlink.com
[Product]
D-Link DSL-2770L (version ME_1.01, ME_1.02, AU_1.06)
[Vulnerability Type]
admin credentials disclosure
[Affected Component]
Web Interface
[CVE Reference]
CVE-2018-18007
[Security Issue]
An authenticated user can visit the page atbox.htm, for example,
http: