Vulnerability CVE-2014-3936

Vulnerability CVE-2014-3936

Published: 2014-06-02

Description:

	Topic	Author	Date
High	D-Link DSP-W215/DIR-505 and others HNAP Request Remote Buffer Overflow	Michael Messner	12.07.2014

Type:

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS Base Score	Impact Subscore	Exploitability Subscore
10/10	10/10	10/10

Affected software
D-link -> Dir-505l shareport mobile companion
D-link -> Dir505 shareport mobile companion
D-link -> Dsp-w215
D-link -> Dir505 shareport mobile companion firmware
D-link -> Dir505l shareport mobile companion firmware
D-link -> Dsp-w215 firmware

http://www.securityfocus.com/bid/67651

http://www.devttys0.com/2014/05/hacking-the-d-link-dsp-w215-smart-plug

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10029

http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10027

http://packetstormsecurity.com/files/127427/D-Link-HNAP-Request-Remote-Buffer-Overflow.html