Home
 » ISP News » 
Sponsored Links

Trustwave Find Security Holes in D-Link’s DSL-2888A Router

Thursday, Dec 17th, 2020 (2:00 pm) - Score 600
d-link-DSL-2888A

Digital security specialists at Trustwave (SpiderLabs) have once again found “numerous security vulnerabilities” in one of D-Link’s home broadband routers, specifically the DSL-2888A, which could allow a malicious WiFi or local network user to gain unauthorised access to the device.

In short, the company made five main discoveries: insufficient authentication (CVE-2020-24579), information leakage (CVE-2020-24577), FTP misconfiguration (CVE-2020-24578), hidden functionality (CVE-2020-24581), and improper authentication (CVE-2020-24580). All told this means that a hacker, entering via the WiFi or local wired network, could gain unauthorised access to the router’s web interface, obtain the router password hash, gain plaintext credentials, and execute system commands on the router. Not ideal.

The good news is that, on the 30th October 2020, D-Link published a support announcement and released a new firmware to patch the vulnerabilities that Harold Zang, Technical Security Specialist at Trustwave, had identified on their DSL-2888A router. Luckily this model is no longer widely available and is more common in Australia, but some people in the UK do use it. If you’re one of those, then get patching.

Share with Twitter
Share with Linkedin
Share with Facebook
Share with Reddit
Share with Pinterest
Tags: ,
Mark-Jackson
By Mark Jackson
Mark is a professional technology writer, IT consultant and computer engineer from Dorset (England), he also founded ISPreview in 1999 and enjoys analysing the latest telecoms and broadband developments. Find me on X (Twitter), Mastodon, Facebook and .
Search ISP News
Search ISP Listings
Search ISP Reviews

Comments are closed

Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £24.00
132Mbps
Gift: None
Shell Energy UK ISP Logo
Shell Energy £26.99
109Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £27.99
145Mbps
Gift: None
Zen Internet UK ISP Logo
Zen Internet £28.00 - 35.00
100Mbps
Gift: None
Large Availability | View All
Cheapest ISPs for 100Mbps+
Gigaclear UK ISP Logo
Gigaclear £15.00
150Mbps
Gift: None
YouFibre UK ISP Logo
YouFibre £19.99
150Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
BeFibre UK ISP Logo
BeFibre £21.00
150Mbps
Gift: £25 Love2Shop Card
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Large Availability | View All
The Top 15 Category Tags
  1. FTTP (5473)
  2. BT (3505)
  3. Politics (2525)
  4. Openreach (2291)
  5. Business (2251)
  6. Building Digital UK (2234)
  7. FTTC (2041)
  8. Mobile Broadband (1961)
  9. Statistics (1780)
  10. 4G (1654)
  11. Virgin Media (1608)
  12. Ofcom Regulation (1451)
  13. Fibre Optic (1392)
  14. Wireless Internet (1386)
  15. FTTH (1381)

Helpful ISP Guides and Tips

Promotion
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms , Privacy and Cookie Policy , Links , Website Rules , Contact
Mastodon