| Title | D-Link DIR-816 A2 <= v1.10CNB05 Buffer Overflow |
|---|
| Description | The router D-Link DIR-816 A2 1.10B05 has a serious buffer overflow vulnerability, which can be exploited through the /goform/form2IPQoSTcDel route. The reason is that the strncpy(v23, v2, v9 - v8); function in the sub_46E230 function does not strictly check the length, which allows attackers to construct a reasonable payload to achieve buffer overflow or even crash the program. |
|---|
| Source | ⚠️ https://github.com/CH13hh/tmp_store_cc/blob/main/tt/4.md |
|---|
| User | BabyShark (UID 83915) |
|---|
| Submission | 04/08/2025 17:16 (1 Year ago) |
|---|
| Moderation | 04/18/2025 04:26 (9 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 240140 [D-Link DIR-816 A2 1.10CNB0 form2IPQoSTcDel removeRuleList stack-based overflow] |
|---|
| Points | 0 |
|---|