Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.
Link | Tags |
---|---|
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.html | mailing list |
http://www.securityfocus.com/archive/1/440298/100/0/threaded | mailing list |
http://www.securityfocus.com/archive/1/440852/100/100/threaded | mailing list |
http://www.eeye.com/html/research/advisories/AD20060714.html | |
http://secunia.com/advisories/21081 | third party advisory vendor advisory |
http://www.osvdb.org/27333 | vdb entry |
http://www.vupen.com/english/advisories/2006/2829 | vdb entry |
http://www.kb.cert.org/vuls/id/971705 | third party advisory us government resource |
http://www.securityfocus.com/bid/19006 | vdb entry |
http://securitytracker.com/id?1016511 | vdb entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/27755 | vdb entry |