| Título | D-Link DIR-815 RevA v1.01 Stack-based Buffer Overflow |
|---|
| Descripción | In the D-Link DIR-815 RevA router firmware version v1.01, the hedwig.cgi CGI program has a stack overflow vulnerability.
The attacker can use the stack overflow to hijack the program flow, main->hedwigcgi_main->cgibin_parse_request()->sub_403B10->sub_403794, and only need to post the parameters to successfully getshell |
|---|
| Fuente | ⚠️ https://github.com/Thir0th/Thir0th-CVE/blob/main/D-Link%20DIR-815%20RevA%20v1.01.md |
|---|
| Usuario | liuchangwei (UID 86561) |
|---|
| Sumisión | 2025-06-13 06:09 (hace 10 meses) |
|---|
| Moderación | 2025-06-19 12:07 (6 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 313324 [D-Link DIR-815 1.01 hedwig.cgi sub_403794 desbordamiento de búfer] |
|---|
| Puntos | 19 |
|---|