Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in D-Link DIR-806 devices. There is a stack-based buffer overflow in function hnap_main at /htdocs/cgibin. The function will call sprintf without checking the length of strings in parameters given by HTTP header and can be controlled by users. And it finally leads to a stack-based buffer overflow via a special HTTP header.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DIR-806 缓冲区错误漏洞
Vulnerability Description
D-Link DIR-806是中国台湾友讯(D-Link)公司的一款无线路由器。 D-link DIR-806 v1.0版本中的/htdocs/cgibin的‘hnap_main’函数存在缓冲区错误漏洞。攻击者可借助较长的HTTP头利用该漏洞执行Shellcode。
CVSS Information
N/A
Vulnerability Type
N/A