Draw

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow occurs in the HTTP Request Handler component when manipulating the `Name` argument. This issue is located within the `tggl asp()` function of the '/tggl.asp' endpoint and can be triggered remotely. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/tggl.asp' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow exists in the CGI Handler component within the `/user group.asp` file. This issue occurs in the `sprintf()` function and can be triggered remotely through manipulation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A stack-based buffer overflow occurs in the `sprintf()` function within the `yyxz.asp` file. This issue allows a remote attacker to trigger the overflow by manipulating the `ID` argument. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A flaw in the Web Management Interface component allows a remote attacker to cause a buffer overflow, which occurs when more data is written to a memory buffer than it can hold. This is achieved by manipulating the `Name` argument within the '/url member.asp' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow exists in the File Extension Handler component. The issue occurs within the `file exten asp()` function of the 'file exten.asp' file when the `Name` argument is manipulated, allowing for remote exploitation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow can be executed remotely via the CGI Endpoint component. The issue exists within the `tgfile htm()` function of the `tgfile.htm` file, where manipulation of the `fn` argument triggers the flaw. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow can be triggered remotely in the HTTP Handler component. The issue exists within the `sprintf()` function of the '/auto reboot.asp' endpoint, where manipulation of the `enable/time` argument allows for the overflow. **Recommendations** For version 16.07.26A1, restrict access to the '/auto reboot.asp' endpoint or disable the affected HTTP Handler functionality as a temporary mitigation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DI-8100 version 16.07.26A1 **Description** A buffer overflow can be triggered remotely via the POST Parameter Handler component. The issue exists within the `url rule asp()` function of the '/url rule.asp' endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.