| Titel | D-Link DIR-816 A2 <= v1.10CNB05 Buffer Overflow |
|---|
| Beschreibung | The router D-Link DIR-816 A2 1.10B05 has a serious buffer overflow vulnerability, which can be exploited through the /goform/form2IPQoSTcDel route. The reason is that the strncpy(v23, v2, v9 - v8); function in the sub_46E230 function does not strictly check the length, which allows attackers to construct a reasonable payload to achieve buffer overflow or even crash the program. |
|---|
| Quelle | ⚠️ https://github.com/CH13hh/tmp_store_cc/blob/main/tt/4.md |
|---|
| Benutzer | BabyShark (UID 83915) |
|---|
| Einreichung | 08.04.2025 17:16 (vor 1 Jahr) |
|---|
| Moderieren | 18.04.2025 04:26 (9 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 240140 [D-Link DIR-816 A2 1.10CNB0 form2IPQoSTcDel removeRuleList Pufferüberlauf] |
|---|
| Punkte | 0 |
|---|