| शीर्षक | D-Link DI-8100 V1.0 buf |
|---|
| विवरण | In the upnp_ctrl_asp function in the jhttpd program, there is a stack overflow vulnerability caused by the sprintf function, which allows an attacker to forge remove_ext_proto parameter or remove_ext_port parameter as an excessively long string, so as to splice to the stack variable when sprintf is spliced |
|---|
| स्रोत | ⚠️ https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/upnp_ctrl_asp.md |
|---|
| उपयोगकर्ता | bazhuayu (UID 86763) |
|---|
| सबमिशन | 18/07/2025 09:10 PM (12 महीनों पहले) |
|---|
| संयम | 19/07/2025 09:13 PM (1 day later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 317026 [D-Link DI-8100 1.0 jhttpd /upnp_ctrl.asp sprintf remove_ext_proto/remove_ext_port बफ़र ओवरफ़्लो] |
|---|
| अंक | 18 |
|---|