Primary

Context

D-Link DIR-816L Stack-Based Buffer Overflow Vulnerability in Authentication CGI

Vulnerability

A stack-based buffer overflow vulnerability has been identified in the D-Link DIR-816L router, specifically in the 2_06_b09_beta firmware version. The issue arises in the 'authenticationcgi_main' function of the 'authentication.cgi' file, where the 'Password' argument can be manipulated, leading to remote exploitation. This vulnerability affects products that are no longer supported by the manufacturer.

Impact

Exploitation of this vulnerability allows for a stack-based buffer overflow, which could potentially be used to execute arbitrary code or cause a denial-of-service condition.

Reproduction

The vulnerability can be reproduced by sending a crafted request to the '/authentication.cgi' endpoint, manipulating the 'Password' parameter to exceed the buffer limit. This can be done remotely without any authentication.

Remediation

Users are advised to implement restrictive firewall rules to block unauthorized access to the router.

Added: Nov 14, 2025, 11:18 PM

Updated: Nov 14, 2025, 11:18 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

9.1

remediation

0.0

relevance

1.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

9.1

remediation

0.0

relevance

1.0

threat

6.4

urgency

2.9

incentive

9.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-816L Stack-Based Buffer Overflow Vulnerability in Authentication CGI

Vulnerability

Impact

Reproduction

Remediation

Affected Products

D-Link DIR-816L

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating