Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2006-3687

Published: 21/07/2006 Updated: 26/04/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Wbr-1310 Wireless G Router

Vulnerability Summary

Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote malicious users to execute arbitrary code via a long M-SEARCH request to UDP port 1900.

Vulnerable Product Search on Vulmon Subscribe to Product

d-link wbr-1310 wireless g router

d-link di-604 broadband router

d-link di-784

d-link ebr-2310 ethernet broadband router

d-link wbr-2310 rangebooster g router

dlink di-524

dlink di-624

Exploits

Exploit DB: D-Link Routers - UPNP Buffer Overflow
source: wwwsecurityfocuscom/bid/19006/info D-Link wired and wireless routers are prone to a buffer-overflow vulnerability because these devices fail to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer Successful exploits can allow remote attackers to execute arbitrary machine code in t ...

References

NVD-CWE-Otherhttp://www.eeye.com/html/research/advisories/AD20060714.htmlhttp://secunia.com/advisories/21081http://www.securityfocus.com/bid/19006http://securitytracker.com/id?1016511http://www.kb.cert.org/vuls/id/971705http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.htmlhttp://www.osvdb.org/27333http://www.vupen.com/english/advisories/2006/2829https://exchange.xforce.ibmcloud.com/vulnerabilities/27755http://www.securityfocus.com/archive/1/440852/100/100/threadedhttp://www.securityfocus.com/archive/1/440298/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/28230/https://www.kb.cert.org/vuls/id/971705
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook