| 标题 | D-Link DIR-513 D-Link DIR-513 A2 1.10 Buffer Overflow |
|---|
| 描述 | In the D-Link DIR-513 A2 1.10 firmware has a buffer overflow vulnerability in the formSetPassword function. The Var variable receives the curTime parameter from a POST request. However, since the user can control the input of curTime, the sprintf can cause a buffer overflow vulnerability. |
|---|
| 来源 | ⚠️ https://lavender-bicycle-a5a.notion.site/D-Link-DIR-513-formSetPassword-33153a41781f806e9a3cf63a5a9091ac?source=copy_link |
|---|
| 用户 | wxhwxhwxh_mie (UID 66748) |
|---|
| 提交 | 2026-03-28 10時11分 (18 日前) |
|---|
| 管理 | 2026-04-09 16時36分 (12 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 356568 [D-Link DIR-513 1.10 POST Request /goform/formSetPassword curTime 内存损坏] |
|---|
| 积分 | 15 |
|---|