PT-2023-9014 · D Link · D-Link Dir-868L

Changnai-Hsin

Publicado

2023-01-30

Atualizado

2024-08-02

CVE-2023-29856

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions D-Link DIR-868L Hardware version A1, firmware version 1.12

Description The issue is caused by a Buffer Overflow in the scandir.sgi binary, which can allow a remote attacker to execute arbitrary code. This is a result of a stack-based buffer overflow vulnerability.

Recommendations For D-Link DIR-868L Hardware version A1, firmware version 1.12, consider disabling the scandir.sgi binary as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-120

Identificadores relacionados

BDU:2024-03018

CVE-2023-29856

Produtos afetados

D-Link Dir-868L

PT-2023-9014 · D Link · D-Link Dir-868L

CVE-2023-29856

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7