Submeter #618640: D-Link DI-8100 V1.0 bufinformação

TítuloD-Link DI-8100 V1.0 buf
DescriçãoIn the upnp_ctrl_asp function in the jhttpd program, there is a stack overflow vulnerability caused by the sprintf function, which allows an attacker to forge remove_ext_proto parameter or remove_ext_port parameter as an excessively long string, so as to splice to the stack variable when sprintf is spliced
Fonte⚠️ https://github.com/buobo/bo-s-CVE/blob/main/DI-8100/upnp_ctrl_asp.md
Utilizador
 bazhuayu (UID 86763)
Submissão18/07/2025 21h10 (há 8 meses)
Moderação19/07/2025 21h13 (1 day later)
EstadoAceite
Entrada VulDB317026 [D-Link DI-8100 1.0 jhttpd /upnp_ctrl.asp sprintf remove_ext_proto/remove_ext_port Excesso de tampão]
Pontos18

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!