D-Link DIR-513 Stack Buffer Overflow Vulnerability

A stack buffer overflow vulnerability has been identified in the D-Link DIR-513 router, specifically in version 1.10. The issue arises in the goform/formWlanSetup component, where the vulnerability can be exploited by sending a crafted request that includes a long 'webpage' parameter. This overflow can potentially be used to execute arbitrary code or cause a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to a stack buffer overflow, which can commonly result in arbitrary code execution or causing the device to crash.

Reproduction

To reproduce this vulnerability, send a POST request to the '/goform/formWlanSetup' endpoint. Include a 'webpage' parameter with a payload that exceeds the buffer size, effectively causing a stack buffer overflow. The request should be made with a user agent that mimics a standard web browser.