CVE-2013-6027

Stack-based buffer overflow in the RuntimeDiagnosticPing function in /bin/webs on D-Link DIR-100 routers might allow remote authenticated administrators to execute arbitrary commands via a long set/runtime/diagnostic/pingIp parameter to Tools/tools_misc.xgi.
References
Configurations

Configuration 1 (hide)

cpe:2.3:h:dlink:dir-100:-:*:*:*:*:*:*:*

History

26 Apr 2023, 18:55

Type Values Removed Values Added
CPE cpe:2.3:h:d-link:dir-100:-:*:*:*:*:*:*:* cpe:2.3:h:dlink:dir-100:-:*:*:*:*:*:*:*

Information

Published : 2013-10-19 10:36

Updated : 2024-02-04 18:16


NVD link : CVE-2013-6027

Mitre link : CVE-2013-6027

CVE.ORG link : CVE-2013-6027


JSON object : View

Products Affected

dlink

  • dir-100
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer