CVE-2023-33626

Name of the Vulnerable Software and Affected Versions D-Link DIR-600 Hardware Version B5, Firmware Version 2.18

Description The issue is related to a stack overflow in the gena.cgi binary, which can be exploited by a remote attacker to elevate privileges and execute arbitrary commands. This is a result of a buffer overflow in memory.

Recommendations For D-Link DIR-600 Hardware Version B5, Firmware Version 2.18, consider disabling the gena.cgi binary as a temporary workaround until a patch is available. Restrict access to the gena.cgi binary to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.