Details of VAR-E-201511-0178

ID

VAR-E-201511-0178

TITLE

Multiple D-Link Products Multiple Buffer Overflow and Command Injection Vulnerabilities

Trust: 0.3

sources: BID: 77615

DESCRIPTION

Multiple D-Link products are prone to multiple buffer-overflow vulnerabilities and a command injection vulnerability.
Attackers may leverage these issues to execute arbitrary code and commands in the context of the affected device. Failed exploits may result in denial-of-service conditions.

Trust: 0.3

sources: BID: 77615

AFFECTED PRODUCTS

vendor:	d link	model:	dir-818w	scope:	eq	version:	0	Trust: 0.3
vendor:	d link	model:	dir-817lw	scope:	eq	version:	0	Trust: 0.3

sources: BID: 77615

EXPLOIT

The researcher who discovered these issues has created a proof-of-concept. Please see the references for more information.

Trust: 0.3

sources: BID: 77615

PRICE

Free

Trust: 0.3

sources: BID: 77615

TYPE

Boundary Condition Error

Trust: 0.3

sources: BID: 77615

CREDITS

Samuel Huntley

Trust: 0.3

sources: BID: 77615

EXTERNAL IDS

db:

BID

id:

77615

Trust: 0.3

sources: BID: 77615

REFERENCES

url:	http://www.dlink.com/	Trust: 0.3
url:	http://seclists.org/bugtraq/2015/nov/74	Trust: 0.3
url:	http://seclists.org/bugtraq/2015/nov/75	Trust: 0.3

sources: BID: 77615

SOURCES

db:

BID

id:

77615

LAST UPDATE DATE

2022-07-27T09:24:32.357000+00:00

SOURCES UPDATE DATE

db:

BID

id:

77615

date:

2015-11-13T00:00:00

SOURCES RELEASE DATE

db:

BID

id:

77615

date:

2015-11-13T00:00:00