| Title | D-Link DAP-1620 1.03 Buffer Overflow |
|---|
| Description | A critical vulnerability has been identified in the check_dws_cookie function of the D-Link DAP-1620 router running firmware version 1.03. This vulnerability can lead to a stack-based buffer overflow when processing HTTP requests with paths starting with "/storage". The issue specifically occurs when handling the uid parameter in the request, which is copied into a fixed-size buffer without proper length validation. |
|---|
| Source | ⚠️ https://witty-maiasaura-083.notion.site/D-link-DAP-1620-check_dws_uid-Vulnerability-1b4b2f2a63618025b049f6e62a1835c0 |
|---|
| User | Anonymous User |
|---|
| Submission | 03/12/2025 05:12 (1 Year ago) |
|---|
| Moderation | 03/21/2025 21:29 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 300623 [D-Link DAP-1620 1.03 /storage check_dws_cookie uid stack-based overflow] |
|---|
| Points | 17 |
|---|