提交 #807849: D-Link DI-8100 16.07.26A1 Denial of Service
| 标题 | D-Link DI-8100 16.07.26A1 Denial of Service |
|---|---|
| 描述 | The DI-8100 router web management interface contains a stack-based buffer overflow vulnerability in the /url_member.asp endpoint. An authenticated attacker can supply an overly long string to the name parameter when performing an add operation. This input is copied into a fixed-size stack buffer without proper length validation, leading to memory corruption, process crash, and potential remote code execution. |
| 来源 | ⚠️ https:/ |
| 用户 | draw (UID 64399) |
| 提交 | 2026-04-19 16時27分 (2 月前) |
| 管理 | 2026-05-05 13時41分 (16 days later) |
| 状态 | 已接受 |
| VulDB条目 | 361133 [D-Link DI-8100 16.07.26A1 Web Management Interface /url_member.asp 名称 内存损坏] |
| 积分 | 20 |