Primary

Context

D-Link DI-8100 Stack-Based Buffer Overflow Vulnerability in HTTP Request Handler

Vulnerability

A critical stack-based buffer overflow vulnerability has been identified in the D-Link DI-8100 router, specifically in the HTTP Request Handler component while processing the '/arp_sys.asp' file. This vulnerability, present in firmware version 16.07.26A1, can be exploited remotely by sending specially crafted HTTP requests, potentially leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability causes a stack-based buffer overflow, which can disrupt the normal operation of the device and potentially allow for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by sending HTTP requests that exploit the buffer overflow condition in the '/arp_sys.asp' file. This can be done by targeting the D-Link DI-8100 router running firmware version 16.07.26A1.

Added: Jul 14, 2025, 12:28 PM

Updated: Jul 14, 2025, 2:29 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

6.2

remediation

0.0

relevance

0.2

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

D-Link DI-8100 Stack-Based Buffer Overflow Vulnerability in HTTP Request Handler

Vulnerability

Impact

Reproduction

Affected Products

D-Link DI-8100

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating