27333 : D-Link Routers UPnP M-SEARCH Request Overflow
Printer | http://osvdb.org/27333 | Email This | Edit Vulnerability

Views This Week

Views All Time

243

Info

Last Modified

6 months ago

Percent Complete

95%

Disclosure

Jul 13, 2006

Discovery

Feb 27, 2006

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in several D-Link Routers. These routers fail to handle some M-SEARCH UPnP requests resulting in a stack overflow. With a specially crafted UPnP request, an attacker can execute arbitrary code resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Rumored / Private

Solution

Vendor D-Link has released updates for all affected routers and they are available for download on their website.

Products

D-Link Systems, Inc.	DI-524	Rev A
		Rev C
		Rev D
		Rev B1
		Rev B2
	DI-604	Rev E
	DI-624	Rev C
	DI-624	Rev D
	DI-784	Rev A
	EBR-2310	Rev A
	WBR-1310	Rev A
	WBR-2310	Rev A

References

FrSIRT Advisory: ADV-2006-2829
Bugtraq ID: 19006
CERT VU: 971705
Other Advisory URL: http://www.eeye.com/html/research/advisories/AD20060714.html
ISS X-Force ID: 27755
Secunia Advisory ID: 21081
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.html
CVE ID: 2006-3687 (see also: NVD)
Security Tracker: 1016511
Vendor URL: http://www.dlink.com/
Keyword: EEYEB-20060227

Manual Testing Notes

Credit

Barnaby Jack - infoeEye.com - eEye Digital Security

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

D-Link Systems, Inc.

DI-524

DI-604

DI-624

DI-784

EBR-2310

WBR-1310

WBR-2310

References

Manual Testing Notes

Credit

Blogs

Comments