D-Link DIR-600L Ax Buffer Overflow Vulnerability in WAN Auto-Detection Wizard
Vulnerability
A buffer overflow vulnerability has been identified in the D-Link DIR-600L Ax router, specifically in the firmware version FW116WWb01. The issue arises in the 'formAutoDetecWAN_wizard4' function, where the 'curTime' parameter is processed without proper length validation. This oversight allows for excessive input to be written into a buffer, potentially leading to arbitrary code execution or other malicious outcomes.
Impact
Exploitation of this vulnerability causes a buffer overflow, which can commonly lead to arbitrary code execution or causing the device to crash.
Reproduction
The vulnerability can be reproduced by sending a crafted request to the 'formAutoDetecWAN_wizard4' function, including a 'curTime' parameter with excessive length. The lack of input validation in this parameter allows for the buffer overflow to occur, as the 'curTime' value is copied into a buffer using 'sprintf' without any length checks.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.