ID
VAR-E-201511-0496
TITLE
D-Link DIR-890L/R Multiple Buffer Overflow Vulnerabilities
Trust: 0.3
sources:
BID: 77598
DESCRIPTION
D-Link DIR-890L and DIR-890R are prone to multiple buffer-overflow vulnerabilities because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffer.
Attackers may leverage these issues to execute arbitrary code in the context of the affected device. Failed exploits may result in denial-of-service conditions.
Trust: 0.3
sources:
BID: 77598
AFFECTED PRODUCTS
| vendor: | d link | model: | dir-890r | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | d link | model: | dir-890l | scope: | eq | version: | 0 | Trust: 0.3 |
sources:
BID: 77598
EXPLOIT
The researcher who discovered these issues has created a proof-of-concept. Please see the references for more information.
Trust: 0.3
sources:
BID: 77598
PRICE
Free
Trust: 0.3
sources:
BID: 77598
TYPE
Boundary Condition Error
Trust: 0.3
sources:
BID: 77598
CREDITS
Samuel Huntley
Trust: 0.3
sources:
BID: 77598
EXTERNAL IDS
| db: | BID | id: | 77598 | Trust: 0.3 |
sources:
BID: 77598
REFERENCES
| url: | http://www.dlink.com/ | Trust: 0.3 |
| url: | http://seclists.org/bugtraq/2015/nov/72 | Trust: 0.3 |
sources:
BID: 77598
SOURCES
| db: | BID | id: | 77598 |
LAST UPDATE DATE
2022-07-27T09:37:46.471000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 77598 | date: | 2015-12-08T22:09:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 77598 | date: | 2015-11-13T00:00:00 |