Primary

Context

D-Link DIR-513 Stack Buffer Overflow Vulnerability

Vulnerability

A stack buffer overflow vulnerability has been identified in the D-Link DIR-513 router, specifically in version 1.10. The issue arises in the goform/formLogin endpoint, where the curTime parameter can be manipulated to cause the overflow.

Impact

Exploitation of this vulnerability leads to a stack buffer overflow, which can commonly result in arbitrary code execution or causing the device to crash.

Reproduction

The vulnerability can be reproduced by sending a POST request to the goform/formLogin endpoint. The request must include a curTime parameter with a payload that exceeds the buffer size, effectively causing a stack buffer overflow. Additional parameters such as login_n and login_pass can be included, but are not necessary for the exploitation.

Added: Mar 4, 2026, 9:18 PM

Updated: Mar 4, 2026, 9:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-513 Stack Buffer Overflow Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating