Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stack buffer overflow vulnerability exists in the D-Link DIR-816A2 router firmware DIR-816A2_FWv1.10CNB05_R1B011D88210.img in the upload.cgi module, which handles firmware version information. The vulnerability occurs because /proc/version is read into a 512-byte buffer and then concatenated using sprintf() into another 512-byte buffer containing a 29-byte constant. Input exceeding 481 bytes triggers a stack buffer overflow, allowing an attacker who can control /proc/version content to potentially execute arbitrary code on the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
D-Link DIR-816A2 安全漏洞
Vulnerability Description
D-Link DIR-816A2是中国友讯(D-Link)公司的一款路由器。 D-Link DIR-816A2存在安全漏洞,该漏洞源于upload.cgi模块处理/proc/version时缓冲区大小不当,可能导致栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A