| 标题 | D-Link DIR816 1.10CNB05 Stack-based Buffer Overflow |
|---|
| 描述 | We found an stack overflow vulnerability in D-Link router with firmware which was released recently, allows remote attackers to crash the server.(without authentication)In the router's form2Wl5RepeaterStep2.cgi function, key1、key2、key3、key4、pskValue is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the key1、key2、key3、key4、pskValue to execute arbitrary code. |
|---|
| 来源 | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/D-Link7/vuln_86/86.md |
|---|
| 用户 | pjqwudi (UID 85106) |
|---|
| 提交 | 2026-03-02 09時22分 (2 月前) |
|---|
| 管理 | 2026-03-14 22時57分 (13 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 351086 [D-Link DIR-816 1.10CNB05 goahead form2Wl5RepeaterStep2.cgi key1/key2/key3/key4/pskValue 内存损坏] |
|---|
| 积分 | 20 |
|---|