Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered on D-Link DSL-2640B B2 EU_4.01B devices. The function do_cgi(), which processes cgi requests supplied to the device's web servers, is vulnerable to a remotely exploitable stack-based buffer overflow. Unauthenticated exploitation is possible by combining this vulnerability with CVE-2020-9277.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DSL-2640B B2 缓冲区错误漏洞
Vulnerability Description
D-Link DSL-2640B B2是中国台湾友讯(D-Link)公司的一款无线路由器。 D-Link DSL-2640B B2 EU_4.01B版本中的‘do_cgi()’函数存在缓冲区错误漏洞。攻击者可通过在URL中提供恶意的cgi模块名利用该漏洞利用该漏洞在设备上以管理权限执行代码。
CVSS Information
N/A
Vulnerability Type
N/A