Primary

Context

D-Link DIR-513 Stack Buffer Overflow Vulnerability

Vulnerability

A stack buffer overflow vulnerability has been identified in the D-Link DIR-513 router, specifically in version 1.10. The issue arises in the 'goform/formLogin' and 'goform/getAuthCode' endpoints, where the 'curTime' parameter can be manipulated to cause the overflow.

Impact

Exploitation of this vulnerability leads to a stack buffer overflow, which can commonly result in arbitrary code execution or causing the device to crash.

Reproduction

The vulnerability can be reproduced by sending a POST request to the 'goform/formLogin' endpoint. The request must include a 'curTime' parameter with a crafted value designed to overflow the buffer. Additional parameters such as 'login_n' and 'login_pass' are also required.

Added: Mar 4, 2026, 10:21 PM

Updated: Mar 4, 2026, 10:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.1

exploitability

8.7

remediation

0.0

relevance

3.5

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DIR-513 Stack Buffer Overflow Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating