Lucene search
K

4 matches found

NVD
NVD
added 2020/01/07 11:15 p.m.24 views

CVE-2019-17146

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP port 80 by default. When parsing the...

10CVSS9.3AI score0.09532EPSS
Exploits0References2
Prion
Prion
added 2020/01/07 11:15 p.m.22 views

Stack overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP port 80 by default. When parsing the...

10CVSS9.7AI score0.09532EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2020/01/07 11:5 p.m.99 views

CVE-2019-17146

The CVE covers a vulnerability in D-Link DCS-960L (v1.07.102) where the HNAP service on port 80 improperly validates the length of user-supplied data in SOAPAction headers, leading to a stack-based overflow and remote code execution as the admin user. Multiple sources (ZDI advisory ZDI-19-1031, N...

10CVSS9.7AI score0.09532EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/01/07 11:5 p.m.24 views

CVE-2019-17146

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP port 80 by default. When parsing the...

8.8CVSS9.7AI score0.09532EPSS
Exploits0References2
Rows per page
Query Builder