mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
729 B
729 B
CVE-2021-43722
Description
D-Link DIR-645 1.03 A1 is vulnerable to Buffer Overflow. The hnap_main function in the cgibin handler uses sprintf to format the soapaction header onto the stack and has no limit on the size.
POC
Reference
- https://github.com/luqiut/iot/blob/main/DIR-645%20Stack%20overflow.md
- https://www.dlink.com/en/security-bulletin/
Github
No PoCs found on GitHub currently.