| Title | D-Link DAP-1620 1.03 Buffer Overflow |
|---|
| Description | A critical vulnerability has been discovered in the D-Link DAP-1620 router running firmware version 1.03, specifically impacting the check_dws_cookie function. The vulnerability arises when processing HTTP requests, where the request path is evaluated to determine if it begins with "/storage". If this condition is met, the subsequent content in the path can trigger a stack-based buffer overflow. This issue could potentially allow an attacker to overwrite memory, leading to device crashes, denial-of-service (DoS) conditions, or even remote code execution, thereby compromising the router's security and the broader network it serves. |
|---|
| Source | ⚠️ https://witty-maiasaura-083.notion.site/D-link-DAP-1620-check_dws_cookie-Vulnerability-1b4b2f2a6361805ca74fdf4949385ade |
|---|
| User | Anonymous User |
|---|
| Submission | 03/12/2025 04:48 (1 Year ago) |
|---|
| Moderation | 03/21/2025 21:28 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 300621 [D-Link DAP-1620 1.03 Cookie /storage check_dws_cookie stack-based overflow] |
|---|
| Points | 17 |
|---|