제출 #810078: D-Link Corporation DNS-320 ShareCenter NAS (Rev.A) Firmware 2.06B01 HOTFIX CWE-78: OS Command Injection정보

제목	D-Link Corporation DNS-320 ShareCenter NAS (Rev.A) Firmware 2.06B01 HOTFIX CWE-78: OS Command Injection
설명	Multiple OS command injection vulnerabilities exist in network_mgr.cgi of D-Link DNS-320 firmware 2.06B01. All functions read HTTP parameters via cgiFormString() and pass them unsanitized to system() via sprintf(). Affected functions and entry addresses: - cgi_speed (0xb854): "cmd_network cgi_speed %s" via f_speed - cgi_dhcpd_lease (0xc99c): via page, rp, query, qtype - cgi_ddns (0xbc70): via f_ddns_username, f_ddns_password, f_ddns_domain - cgi_set_ip (0xc4f8): "ip.sh 0 %s" via f_ip, f_gateway, f_netmask, f_dns1, f_dns2 - cgi_upnp_del (0xa1d8): via scan, enable, e_port, p_port, protocol, service - cgi_dhcpd (0xcaa4): via f_enable - cgi_upnp_add (0xa3c4): via enable, service, protocol, e_port, p_port - cgi_upnp_edit (0x9774): via scan, e_port, p_port, protocol, enable, service Verification: Unicorn Fuzzer CONFIRMED 4 of 8 functions (cgi_speed, cgi_dhcpd_lease, cgi_ddns, cgi_set_ip) with shell metacharacter "; id" reaching system(). Remaining 4 confirmed by angr symbolic execution.
원천	⚠️ https://github.com/dxz0069/WAVLINK-WN530H4-Command-Injection-in-set_add_routing/blob/main/D-Link%20DNS-320%20network_mgr.cgi%20Multiple%20OS%20Command%20Injection%20Vulnerabilities.md
사용자	ST4R (UID 96634)
제출	2026. 04. 22. PM 12:08 (1 월 ago)
모더레이션	2026. 05. 10. PM 05:54 (18 days later)
상태	수락
VulDB 항목	362568 [D-Link DNS-320 2.06B01 /cgi-bin/network_mgr.cgi 권한 상승]
포인트들	20

◂ 이전 개요 다음 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!