Author name: Noamr

SSD Advisory – D-Link DIR-X4860 Security Vulnerabilities

Summary Security vulnerabilities in DIR-X4860 allow remote unauthenticated attackers that can access the HNAP port to gain elevated privileges and run commands as root. By combining an authentication bypass with command execution the device can be completely compromised. Credit A security researcher working with SSD Secure Disclosure Vendor Response The vendor has been reached out …

SSD Advisory – D-Link DIR-X4860 Security Vulnerabilities Read More »

SSD Advisory –  Roundcube markasjunk RCE

Summary A vulnerability in Roundcube’s markasjunk plugin allows attackers that send a specially crafted identity email address to cause the plugin to execute arbitrary code. Credit An independent security researcher, Selim Enes Karaduman, working with SSD Secure Disclosure. Affected Devices Roundcube version 1.6.1 and prior (with markasjunk plugin enabled) Technical Analysis Roundcube’s markasjunk plugin comes …

SSD Advisory –  Roundcube markasjunk RCE Read More »


Get in touch