CVE-2023-32136 D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

CVE-2023-32137 D-Link DAP-1360 webproc WEB_DisplayPage Directory Traversal Information Disclosure Vulnerability

D-Link DAP-1360 webproc WEBDisplayPage Directory Traversal Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerabilit...

CVE-2023-32136 D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The...

CVE-2023-32137 D-Link DAP-1360 webproc WEB_DisplayPage Directory Traversal Information Disclosure Vulnerability

D-Link DAP-1360 webproc WEBDisplayPage Directory Traversal Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerabilit...

CVE-2023-32137

CVE-2023-32137 relates to a directory traversal information disclosure in D-Link DAP-1360/DAP-2020 devices via the /cgi-bin/webproc endpoint. The flaw stems from insufficient validation of a user-supplied path used in file operations, allowing network-adjacent attackers to disclose sensitive info...

CVE-2023-32136

CVE-2023-32136 concerns D-Link DAP-1360 webproc var:menu stack-based buffer overflow leading to remote code execution. Affected component: the /cgi-bin/webproc endpoint handling of the var:menu parameter; root-level arbitrary code execution is possible without authentication. Exploitation details...

D-Link DAP-1360 安全漏洞

The D-Link DAP-1360 is a router from China AUO D-Link. A security vulnerability exists in the D-Link DAP-1360 that stems from a webproc WEBDisplayPage directory traversal information disclosure vulnerability...

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 allows a hacker to execute arbitrary code.

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 allows a hacker to execute arbitrary code.

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 allows a hacker to execute arbitrary code.

The vulnerability of the webproc script in D-Link’s wireless access points DAP-2020 and DAP-1360 is related to buffer overflow in the stack. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the request handler /cgi-bin/webproc in wireless access points from the microprogramming software D-Link DAP-2020 and DAP-1360 allows a hacker to execute arbitrary code.

The vulnerability of the request processor/cgi-bin/webproc in wireless access points from D-Link, models DAP-2020 and DAP-1360, relates to the possibility of buffer overflow based on a stack mechanism. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

D-Link DAP-1360 webproc COMM_MakeCustomMsg Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of requests to the /cgi-bin/webproc endpoint. The issue...

D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling requests to the /cgi-bin/webproc endpoint. When parsing t...

D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1360 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the /cgi-bin/webproc endpoint. When parsing the errorpage and nextpage...

CVE-2022-40946

On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a Denial of Service via the systoken parameter in a cgi-bin/webproc?getpage=html/index.html request...

CVE-2022-40946

On D-Link DIR-819 Firmware Version 1.06 Hardware Version A1 devices, it is possible to trigger a Denial of Service via the systoken parameter in a cgi-bin/webproc?getpage=html/index.html request...

The vulnerability of the microprogrammed software of D-Link DAP-2020 and DAP-1360 allows a intruder to execute arbitrary code.

The vulnerability of the microprogrammed software of D-Link’s DAP-2020 and DAP-1360 wireless access points is related to buffer overflow during the processing of the var:menu parameter at the webproc end point. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the COMM_MakeCustomMsg() function in D-Link’s wireless access points DAP-2020 and DAP-1360 allows a hacker to execute arbitrary code.

The vulnerability of the COMMMakeCustomMsg function in D-Link’s wireless access points DAP-2020 and DAP-1360 is related to buffer overflows during the processing of the webproc endpoint. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of D-Link DAP-2020 and DAP-1360 wireless access points’ microprogramming software is related to buffer overflow attacks on the stack. This allows attackers to execute arbitrary code.

The vulnerability of the microprogrammed software of D-Link’s DAP-2020 and DAP-1360 wireless access points is related to buffer overflow when processing the var:page parameter of the webproc module. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2020-18331

Directory traversal vulnerability in ChinaMobile PLC Wireless Router model GPN2.4P21-C-CN running the firmware version W2000EN-01hardware platform Gpn2.4P21-CWIFI-V0.05, via the getpage parameter to /cgi-bin/webproc...