The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execute arbitrary code on the device.
The vulnerability results from a stack-based buffer overflow error (CWE-121) in the device's web service. An attacker can send a specially crafted network request that causes a stack buffer overflow, overwriting program control data. No authentication or user interaction is required, and the attack can be conducted remotely over the network.
An attacker can gain full control of the device by executing arbitrary code (RCE), which can lead to violations of confidentiality, integrity, and availability of data and network resources managed by the router.
Security patches available from the manufacturer should be applied in accordance with references published by TWCERT (https://www.twcert.org.tw/en/cp-139-8081-3fb39-2.html). Until firmware is updated, consider restricting access to the device's web interface exclusively to trusted IP addresses or local networks.
D-Link DIR-X5460 routers — versions indicated in the manufacturer's references (TWCERT)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDlink Dir X4860
HWDlinka1Dlink Dir X4860 Firmware
OSDlink1.001.04Dlink Dir X5460
HWDlinka1Dlink Dir X5460 Firmware
OSDlink1.011.021.041.10
Related vulnerabilities
Stack-based Buffer Overflow w routerach D-Link DIR-X4860 umożliwiający RCE
D-Link DIR-X4860 — ukryta usługa telnet z zakodowanymi danymi logowania
D-Link DIR-X4860: command injection przez telnet z użyciem zakodowanych poświadczeń
Certain models of D-Link wireless routers contain hidden functionality. By sending specific packets to the web...
D-Link DNS-320L/325/327L/340L — zakodowane na stałe poświadczenia (hard-coded credentials)