D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.
References
Link | Resource |
---|---|
https://github.com/luqiut/iot/blob/main/DIR-645%20Stack%20overflow.md | Exploit Third Party Advisory |
https://www.dlink.com/en/security-bulletin/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-31T20:28:00
Updated: 2022-03-31T20:28:00
Reserved: 2021-11-15T00:00:00
Link: CVE-2021-43722
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-03-31T21:15:07.697
Modified: 2022-04-08T06:33:21.277
Link: CVE-2021-43722
JSON object: View
Redhat Information
No data.
CWE