Adds attack signature for CVE-2018-10824. Closes nmap#1378

jumpnow · Jan 31, 2019 · b5b2a5d · b5b2a5d
1 parent ffe8dd4
commit b5b2a5d
Showing 1 changed file with 16 additions and 0 deletions.
diff --git a/nselib/data/http-fingerprints.lua b/nselib/data/http-fingerprints.lua
@@ -7170,6 +7170,22 @@ table.insert(fingerprints, {
      }
   });
 
+table.insert(fingerprints, {
+    category = 'attacks',
+    probes = {
+      {
+        path = '/uir//tmp/csman/0',
+        method = 'GET'
+      }
+    },
+    matches = {
+      {
+        match = '200',
+        output = 'Possible D-Link router plaintext password file exposure (CVE-2018-10824)'
+      }
+    }
+  });
+
 ------------------------------------------------
 ----        Open Source CMS checks          ----
 ------------------------------------------------