A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1
The D-Link DI-8400 router has a stack-based buffer overflow vulnerability in the /dbsrv.asp file, allowing remote attackers to execute arbitrary code. The vulnerability can be exploited by manipulating the 'str' argument. This is a high-severity vulnerability with a public exploit available.
A vulnerability was detected in D-Link DI-8400 up to 16.07.26A1. This affects an unknown function of the file /dbsrv.asp. Performing a manipulation of the argument str results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used. The initial researcher advisory mentions contradicting parameter names to be affected.
D-Link DI-8400 users are at high risk of remote code execution, potentially allowing attackers to take control of the router and access the network.
Remediation Recommended
This vulnerability carries significant risk. Schedule patching in your next cycle.
What should I do?
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0
Affected Products
6
References
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact