Lnkvct

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410 **Description** The issue is related to a stack buffer overflow vulnerability in the function `FUN 80046eb4` in the `/formSetPortTr` endpoint. This vulnerability can be triggered via a crafted POST request, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410, consider disabling the `FUN 80046eb4` function in the `/formSetPortTr` endpoint as a temporary workaround until a patch is available. Restrict access to the `/formSetPortTr` endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 versions through DIR-809Ax FW1.12WWB03 20190410 **Description** The issue is related to a stack buffer overflow vulnerability in the function `sub 8003183C` in the `/fromLogin` endpoint. This vulnerability can be triggered via a crafted POST request to the `/fromLogin` endpoint, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For versions through DIR-809Ax FW1.12WWB03 20190410, as a temporary workaround, consider restricting access to the `/fromLogin` endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410 **Description** A stack buffer overflow issue exists in the `FUN 8004776c` function, located in the `/formVirtualApp` endpoint. This issue can be triggered via a crafted POST request, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410, as a temporary workaround, consider disabling the `FUN 8004776c` function in the `/formVirtualApp` endpoint until a patch is available. Restrict access to the `/formVirtualApp` endpoint to minimize the risk of exploitation. Avoid using crafted POST requests to the `/formVirtualApp` endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410 **Description** A stack buffer overflow issue exists in the `FUN 800462c4` function, located in the `/formAdvFirewall` endpoint. This issue can be triggered via a crafted POST request, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410, as a temporary workaround, consider disabling the `FUN 800462c4` function in the `/formAdvFirewall` endpoint until a patch is available. Restrict access to the `/formAdvFirewall` endpoint to minimize the risk of exploitation. Avoid using the vulnerable function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410 **Description** A stack buffer overflow issue exists in the `FUN 80040af8` function, located in the `/formWlanSetup` endpoint. This issue can be triggered via a crafted POST request, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410, as a temporary workaround, consider disabling the `FUN 80040af8` function in the `/formWlanSetup` endpoint until a patch is available. Restrict access to the `/formWlanSetup` endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 versions through DIR-809Ax FW1.12WWB03 20190410 **Description** The issue is related to a stack buffer overflow vulnerability in the function FUN 8004776c, located in the /formVirtualServ endpoint. This vulnerability can be triggered via a crafted POST request to the "/formVirtualServ" endpoint, allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For versions through DIR-809Ax FW1.12WWB03 20190410, as a temporary workaround, consider disabling the FUN 8004776c function in the /formVirtualServ endpoint until a patch is available. Restrict access to the /formVirtualServ endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410 **Description** A stack buffer overflow issue exists in the function `FUN 80034d60` in the `/formStaticDHCP` endpoint. This issue can be triggered via a crafted POST request, potentially allowing a remote attacker to execute arbitrary code in the system. **Recommendations** For D-Link DIR-809 devices with firmware through DIR-809Ax FW1.12WWB03 20190410, consider disabling access to the `/formStaticDHCP` endpoint until a patch is available. As a temporary workaround, restrict the use of the `FUN 80034d60` function to minimize the risk of exploitation. Avoid using the `/formStaticDHCP` endpoint with crafted POST requests until the issue is resolved.