CVE-2023-26612

Name of the Vulnerable Software and Affected Versions D-Link DIR-823G firmware version 1.02B05

Description The issue is related to a buffer overflow in the implementation of the HNAP1 protocol in the D-Link DIR-823G router's firmware. This occurs when processing the SetParentsControlInfo parameter, specifically the HostName field. Exploitation of this issue could allow a remote attacker to cause a denial of service.

Recommendations For D-Link DIR-823G firmware version 1.02B05, consider disabling the SetParentsControlInfo function until a patch is available to prevent potential exploitation. Restrict access to the vulnerable HostName field in the SetParentsControlInfo parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.