Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[FurryNutz]

This update is in regards to >CVE-2019-10999 :: Authenticated Buffer Overflow (Various DCS Cameras)

D-Link posted DCS-933L Rev A firmware version,which can be downloaded from >DCS-933L Rev A  - Firmware v1.15 B01 Download.

Problems Fixed
1. Add CSRF protection for FTP setting.
2. Remove crossdomain.xml to fix a security vulnerability.
3. Fix an issue where sending long password on password field of html page.
4. Fix an issue that when set motion sensitivity to 0%, the motion alarm still occurs.
5. Fix an authenticated buffer overflow vulnerability issue.

New Features
1. Update Mydlink Agent to v2.2.0-b63.
2. The default system time is changed to 2019-01-01.
3. Re-sign the ActiveX plugin with the new certificate
4. Re-sign the Java Applet with the new certificate
5. Re-sign the macOS plugin with the new certificate
6. Support digest authentication for Web UI
7. Upgrade MatrixSSL to v3.9.3
8. Add XSS protection mechanism for CGI command.
9. Change the open source to GPLv2 terms

• DCS-933L - Firmware Release Notes
  
• Network Cameras - Important Posts & Information
  
• Network Cameras - Beta Firmware Terms and Conditions
  
• Network Cameras - Why Have Multiple Hardware Versions for the Same Model?
  
  

Please post your comments and observations as a reply to this thread.

    

[kjellh42]

Have problems that motion detection do not work after upgrade. Testmail works ok, but no mail after motion.
Also problem as I cannot block areas in Motion detection settings. Nothing happens when clicking on picture. And also if I scroll down the whole picture disappears. Can you help me find out what is wrong?

[FurryNutz]

Try a factory reset on the camera and setup from scratch to see if any changes.