D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow....
Critical severity
Unreviewed
Published
Apr 1, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Mar 31, 2022
Published to the GitHub Advisory Database
Apr 1, 2022
Last updated
Jan 27, 2023
D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.
References