Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.
- https://github.com/luqiut/iot/blob/main/DIR-645%20Stack%20overflow.md
- https://www.dlink.com/en/security-bulletin/
No PoCs found on GitHub currently.