CVE-2024-37605

Name of the Vulnerable Software and Affected Versions D-Link DIR-860L version REVB FIRMWARE 2.04.B04 ic5b

Description A NULL pointer dereference in the D-Link DIR-860L firmware allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request. The vulnerability is related to errors in pointer dereference due to incorrect checking of the HTTP request format. Exploitation of the vulnerability can allow a remote attacker to cause a denial of service by sending specially crafted HTTP requests.

Recommendations For D-Link DIR-860L version REVB FIRMWARE 2.04.B04 ic5b, as a temporary workaround, consider restricting access to the /sbin/httpd file until a patch is available. Avoid using the vulnerable firmware until an update is released. At the moment, there is no information about a newer version that contains a fix for this vulnerability.