| शीर्षक | D-Link DI-8100 16.07.26A1 Denial of Service |
|---|
| विवरण | A critical stack-based buffer overflow vulnerability exists in the D-Link DI-8100 Gigabit Router firmware version 16.07.26A1. The flaw resides in the url_rule_asp handler function, which improperly utilizes sprintf to concatenate user-supplied HTTP POST parameters into a fixed-size stack buffer of only 8 bytes. An unauthenticated or authenticated remote attacker can exploit this condition to corrupt stack memory, leading to a denial-of-service (DoS) condition. |
|---|
| स्रोत | ⚠️ https://github.com/draw-ctf/report/blob/main/DI-8100/url_rule_asp_overflow.md |
|---|
| उपयोगकर्ता | draw (UID 64399) |
|---|
| सबमिशन | 19/04/2026 03:42 PM (2 महीनों पहले) |
|---|
| संयम | 05/05/2026 01:39 PM (16 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 361131 [D-Link DI-8100 16.07.26A1 POST Parameter /url_rule.asp url_rule_asp बफ़र ओवरफ़्लो] |
|---|
| अंक | 20 |
|---|