| タイトル | D-Link DAP-1620 1.03 Buffer Overflow |
|---|
| 説明 | A critical vulnerability has been discovered in the D-Link DAP-1620 router running firmware version 1.03, specifically impacting the set_ws_action function within the /dws/api/ file. The vulnerability arises when processing HTTP requests, where the request path is checked to see if it starts with "/dws/api/". If this condition is met, the subsequent content in the path can cause a heap-based buffer overflow. This issue could potentially allow an attacker to overwrite memory, leading to device crashes, denial-of-service (DoS) conditions, or even remote code execution. |
|---|
| ソース | ⚠️ https://witty-maiasaura-083.notion.site/D-link-DAP-1620-set_ws_action-Vulnerability-1afb2f2a6361804e86dcde1e78ea2a8e |
|---|
| ユーザー | Anonymous User |
|---|
| 送信 | 2025年03月12日 04:43 (1 年 ago) |
|---|
| モデレーション | 2025年03月21日 21:28 (10 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 300620 [D-Link DAP-1620 1.03 Path /dws/api/ set_ws_action メモリ破損] |
|---|
| ポイント | 17 |
|---|