Hunzi0

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.19 **Description** The issue is related to a Buffer Overflow in the `formSetPPTPServer` function, which can be exploited via the `endIp` parameter. **Recommendations** For Tenda AC18 version 15.03.05.19, as a temporary workaround, consider restricting access to the `formSetPPTPServer` function until a patch is available. Avoid using the `endIp` parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to a stack overflow in the /goform/form2WizardStep54 component of the D-Link DIR-816 A2 router's firmware. This overflow is caused by the `wizardstep54 pskpwd` parameter. Exploitation of this issue may allow a remote attacker to execute arbitrary code. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, consider restricting access to the /goform/form2WizardStep54 endpoint and avoid using the `wizardstep54 pskpwd` parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to a stack overflow in the /goform/form2WizardStep4 component of the D-Link DIR-816 A2 router's firmware. This can be exploited via the `wizardstep4 pskpwd` parameter, potentially allowing a remote attacker to execute arbitrary code. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, consider restricting access to the /goform/form2WizardStep4 endpoint and avoid using the `wizardstep4 pskpwd` parameter until a patch is available. As a temporary workaround, disabling the vulnerable component may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to a stack overflow in the `setSecurity` function, specifically via the `pskValue` parameter. This can potentially allow a remote attacker to execute arbitrary code due to a buffer overflow in memory. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, consider restricting access to the `setSecurity` function until a patch is available. Avoid using the `pskValue` parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to a stack overflow in the D-Link DIR-816 A2 router's firmware, which can be triggered via the `srcip` parameter at the "/goform/form2IPQoSTcAdd" API endpoint. This can potentially allow a remote attacker to execute arbitrary code. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, as a temporary workaround, consider restricting access to the "/goform/form2IPQoSTcAdd" API endpoint to minimize the risk of exploitation. Avoid using the `srcip` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to a buffer overflow in the setRepeaterSecurity function of the D-Link DIR-816 A2 router's firmware. This can be exploited by a remote attacker using the `pskValue` parameter to execute arbitrary code. **Recommendations** For version 1.10 B05, consider restricting access to the setRepeaterSecurity function until a patch is available. As a temporary workaround, avoid using the `pskValue` parameter in the affected function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-816 A2 version 1.10 B05 **Description** The issue is related to command injection vulnerabilities. These vulnerabilities can be exploited via the `admuser` and `admpass` parameters at the "/goform/setSysAdm" API endpoint. The vulnerability may allow a remote attacker to cause a denial of service. **Recommendations** For D-Link DIR-816 A2 version 1.10 B05, consider restricting access to the "/goform/setSysAdm" API endpoint to minimize the risk of exploitation. Avoid using the `admuser` and `admpass` parameters in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.