Avast also tells me that I'm vulerably to "VULN DLINK PHP AUTH BYPASS".
I have searched on the Internet about this and found these two pages:
http://forums.dlink.com/index.php?topic=23161.0http://www.devttys0.com/wp-content/uploads/2010/12/dlink_php_vulnerability.pdfI do have a D-Link DIR-615 router, but my router has revision H and the firmware is from 2012, after this vulnerability was found. And I have also tried the "proof of concept" URL:
http://192.168.1.1/bsc_lan.php?NO_NEED_AUTH=1&AUTH_GROUP=0And it is clear that I don't have this vulnerabity in my router.
This gives me the impression that Avast tries to scare the shit out of me, but that everything is a big lie.
One other interresting thing. I have two computers, there one has updated Avast today and one which is not updated today. When I run the network test on the computer which is updated today, I get the alarms that the router has the rom-0 vulnerabity, the d-link vulnerabity and that the router is infected. When I run the network test on the other computer which also claims that all parts of Avast on that computer is updated, I don't get any alarms at all. Avast on that computer says that my network is safe and clean. That doesn't make sense at all!
Kind regards,
Daniel