3 matches found
D-Link DAP-1520 Buffer Overflow (CVE-2020-15892)
A buffer overflow vulnerability exists in D-Link DAP-1520 devices. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2020-15892
An issue was discovered in apply.cgi on D-Link DAP-1520 devices before 1.10b04Beta02. Whenever a user performs a login action from the web interface, the request values are being forwarded to the ssi binary. On the login page, the web interface restricts the password input field to a fixed length...
CVE-2020-15892
The CVE-2020-15892 issue affects D-Link DAP-1520 firmware (pre-1.10b04Beta02) in apply.cgi. The login flow forwards POST values to an ssi binary, and client-side validation limits the password to 15 chars, which can be bypassed. An attacker intercepting a login POST and modifying the vulnerable p...