Primary

Context

D-Link DIR-513 Stack Buffer Overflow Vulnerability via Device Reboot Form

Vulnerability

A stack buffer overflow vulnerability has been identified in the D-Link DIR-513 router, specifically in version 1.10. The issue arises in the 'goform/formDeviceReboot' function, where the value of 'next_page' is not properly validated before being copied to 'p_last_url'. This lack of validation can be exploited to overwrite memory, potentially leading to arbitrary code execution.

Impact

Exploitation of this vulnerability causes a stack buffer overflow, which can lead to arbitrary code execution.

Reproduction

To reproduce this vulnerability, send a POST request to '/goform/formDeviceReboot' with a crafted 'next_page' parameter. The value of 'next_page' should be sufficiently long to overflow the buffer when it is copied to 'p_last_url' using 'strcpy'.

Added: Mar 4, 2026, 8:30 PM

Updated: Mar 4, 2026, 8:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-513 Stack Buffer Overflow Vulnerability via Device Reboot Form

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating