D-Link DI-8100 Stack-Based Buffer Overflow Vulnerability in yyxz.asp

A stack-based buffer overflow vulnerability has been identified in the D-Link DI-8100 router, specifically in firmware version 16.07.26A1. The issue arises in the yyxz.asp file, where the sprintf function is used insecurely. The vulnerability allows remote exploitation by manipulating the 'id' parameter, leading to potential arbitrary code execution.

Impact

Exploitation of this vulnerability could result in arbitrary code execution, allowing an attacker to execute malicious code on the device. This could lead to a full system compromise. Additionally, the vulnerability can be used to crash the device, causing a denial-of-service condition.

Reproduction

To reproduce this vulnerability, log into the D-Link DI-8100 router's administrative web interface. Once logged in, send an HTTP POST request to the yyxz.asp endpoint with a long string in the 'id' parameter. The router's HTTP service will crash, indicating that the buffer overflow vulnerability has been successfully exploited.