| عنوان | D-Link DIR-513 V1.10 Buffer Overflow |
|---|
| الوصف | A stack-based buffer overflow vulnerability exists in the formSetWanNonLogin function of the Boa web server, which is used to implement the web-based management interface in the DIR-513 embedded device.
This vulnerability is triggered when a remote attacker sends a specially crafted POST request to the /goform/formSetWanNonLogin endpoint. The vulnerable function retrieves the curTime parameter from the request body and later uses it in a call to sprintf():
sprintf(v64, "%s?t=%s", last_url, Var);
Here, Var is derived from the curTime input. Since the length of curTime is not properly validated before being used in sprintf, an attacker can supply an overly long value, leading to a stack buffer overflow. |
|---|
| المصدر | ⚠️ https://github.com/buobo/bo-s-CVE/blob/main/DIR-513/formSetWanNonLogin.md |
|---|
| المستخدم | bazhuayu (UID 86763) |
|---|
| ارسال | 18/07/2025 08:35 PM (12 أشهر منذ) |
|---|
| الاعتدال | 19/07/2025 09:09 PM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 317025 [D-Link DIR-513 1.10 Boa Webserver formSetWanNonLogin sprintf curTime تلف الذاكرة] |
|---|
| النقاط | 20 |
|---|