CVE-2019-10999

Name of the Vulnerable Software and Affected Versions D-Link DCS series versions 1.08.11 and below (DCS-5009L) D-Link DCS series versions 1.14.09 and below (DCS-5010L) D-Link DCS series versions 1.15.12 and below (DCS-5020L) D-Link DCS series versions 1.03.07 and below (DCS-5025L) D-Link DCS series versions 1.04.10 and below (DCS-5030L) D-Link DCS series versions 2.16.01 and below (DCS-930L) D-Link DCS series versions 1.14.11 and below (DCS-931L) D-Link DCS series versions 2.17.01 and below (DCS-932L) D-Link DCS series versions 1.14.11 and below (DCS-933L) D-Link DCS series versions 1.05.04 and below (DCS-934L)

Description The issue is caused by a stack-based buffer overflow in the alphapd component of the D-Link DCS series Wi-Fi cameras' web server. This allows a remotely authenticated attacker to execute arbitrary code by providing a long string in the WEPEncryption parameter when requesting "wireless.htm".

Recommendations For DCS-5009L version 1.08.11 and below, update to a version above 1.08.11. For DCS-5010L version 1.14.09 and below, update to a version above 1.14.09. For DCS-5020L version 1.15.12 and below, update to a version above 1.15.12. For DCS-5025L version 1.03.07 and below, update to a version above 1.03.07. For DCS-5030L version 1.04.10 and below, update to a version above 1.04.10. For DCS-930L version 2.16.01 and below, update to a version above 2.16.01. For DCS-931L version 1.14.11 and below, update to a version above 1.14.11. For DCS-932L version 2.17.01 and below, update to a version above 2.17.01. For DCS-933L version 1.14.11 and below, update to a version above 1.14.11. For DCS-934L version 1.05.04 and below, update to a version above 1.05.04. As a temporary workaround, consider restricting access to the alphapd component until a patch is available. Avoid using the WEPEncryption parameter in the affected API endpoint until the issue is resolved.