CVE-2022-41140
8.8
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of multiple D-Link routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the lighttpd service, which listens on TCP port 80 by default. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-13796.
Affected (3)
Products: Dlink: Dir 882 Us Firmware, Dir 867 Firmware, Dir 878 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.30b07 |
| Running on/with | Platform Versions |
|---|---|
Dlink Dir 882 Us | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.30b08 |
| Running on/with | Platform Versions |
|---|---|
Dlink Dir 867 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 1.30b06 |
| Running on/with | Platform Versions |
|---|---|
Dlink Dir 878 | All versions |
Related CWEs
CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
References (4)
Source: zdi-disclosures@trendmicro.com
PatchVendor Advisory
Source: zdi-disclosures@trendmicro.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Timeline
No history available yet.