CVE-2023-51620

D-Link DIR-X3260 prog.cgi SetIPv6PppoeSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability

Description

D-Link DIR-X3260 prog.cgi SetIPv6PppoeSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd webserver listening on TCP ports 80 and 443. The issue results from the lack of proper validation of a user-supplied string before copying it to a fixed-size stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-21669.

References

Link	Tags
https://www.zerodayinitiative.com/advisories/ZDI-24-040/	third party advisory
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10365	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2023-51620?: CVE-2023-51620 has been scored as a medium severity vulnerability.
How to fix CVE-2023-51620?: To fix CVE-2023-51620, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-51620 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-51620 is being actively exploited. According to its EPSS score, there is a ~1% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-51620?: CVE-2023-51620 affects D-Link DIR-X3260.

Description

Categories

CWE-121 – Stack-based Buffer Overflow

CWE-787 – Out-of-bounds Write

References

Frequently Asked Questions