CVE-2018-10996

Published: May 12, 2018Modified: Nov 21, 2024

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1 devices allows attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a session.cgi?ACTION=logout request involving a long REMOTE_ADDR environment variable.

Affected (1)

Products: D Link: Dir 629 B Firmware

1 product

Dir 629 B Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
D Link Dir 629 B Firmware	All versions

Running on/with	Platform Versions
D Link Dir 629 B	All versions

Related CWEs

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (4)

http://www.securityfocus.com/bid/104277

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://github.com/kgsdy/D-Link-DIR-629/blob/master/D-Link-DIR-629-B1.md

Source: cve@mitre.org

ExploitThird Party Advisory

http://www.securityfocus.com/bid/104277

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://github.com/kgsdy/D-Link-DIR-629/blob/master/D-Link-DIR-629-B1.md

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.