Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbBarnaby JackEDB-ID:28230
HistoryJul 17, 2006 - 12:00 a.m.

D-Link Routers - UPNP Buffer Overflow

2006-07-1700:00:00
Barnaby Jack
www.exploit-db.com
30

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/19006/info

D-Link wired and wireless routers are prone to a buffer-overflow vulnerability because these devices fail to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Successful exploits can allow remote attackers to execute arbitrary machine code in the context of the affected device.

Attackers can exploit this issue by sending a request of the form:

M-SEARCH <800 byte string> HTTP/1.0

to UDP port 1900.

Related

cve 1
cvelist 1
cert 1
nvd 1
cve
cve
CVE-2006-3687
2006-07-21 14:03:00
cvelist
cvelist
CVE-2006-3687
2006-07-18 21:00:00
cert
cert
Multiple D-Link routers fail to properly process UPnP M-SEARCH requests
2006-08-03 00:00:00
nvd
nvd
CVE-2006-3687
2006-07-21 14:03:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:28230
cve1cvelist1cert1nvd1