| Titel | D-Link DIR-815 RevA v1.01 Stack-based Buffer Overflow |
|---|
| Beschreibung | In the D-Link DIR-815 RevA router firmware version v1.01, the hedwig.cgi CGI program has a stack overflow vulnerability.
The attacker can use the stack overflow to hijack the program flow, main->hedwigcgi_main->cgibin_parse_request()->sub_403B10->sub_403794, and only need to post the parameters to successfully getshell |
|---|
| Quelle | ⚠️ https://github.com/Thir0th/Thir0th-CVE/blob/main/D-Link%20DIR-815%20RevA%20v1.01.md |
|---|
| Benutzer | liuchangwei (UID 86561) |
|---|
| Einreichung | 13.06.2025 06:09 (vor 10 Monaten) |
|---|
| Moderieren | 19.06.2025 12:07 (6 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 313324 [D-Link DIR-815 1.01 hedwig.cgi sub_403794 Pufferüberlauf] |
|---|
| Punkte | 19 |
|---|