Vulnerability CVE-2024-9558
Published: 2024-10-06

Description:
A vulnerability was found in D-Link DIR-605L 2.13B01 BETA and classified as critical. This issue affects the function formSetWanPPTP of the file /goform/formSetWanPPTP. The manipulation of the argument webpage leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Type:

CWE-120

 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))

 References:
https://vuldb.com/?id.279365
https://vuldb.com/?ctiid.279365
https://vuldb.com/?submit.413917
https://github.com/abcdefg-png/IoT-vulnerable/blob/main/D-Link/DIR-605L/formSetWanPPTP.md
https://www.dlink.com/
Copyright 2024, cxsecurity.com

 

Back to Top