Published: 13/07/2018 Updated: 09/10/2019

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-823, DIR-822, DIR-818L(W), DIR-895L, DIR-890L, DIR-885L, DIR-880L, DIR-868L, and DIR-850L.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dlink dir-823_firmware -
dlink dir-822_firmware -
dlink dir-818l\\(w\\)_firmware -
dlink dir-895l_firmware -
dlink dir-890l_firmware -
dlink dir-885l_firmware -
dlink dir-880l_firmware -
dlink dir-868l_firmware -
dlink dir-850l_firmware -

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' # Payload working status: # MIPS: # - all valid payloads working (the ones that we are able to send without null bytes) # ARM: # - inline rev/bind shell works (bind meh sometimes) # - s ...

CWE-119 https://www.kb.cert.org/vuls/id/677427 http://seclists.org/fulldisclosure/2016/Nov/38 https://www.exploit-db.com/exploits/40805/http://www.securityfocus.com/bid/94130 https://nvd.nist.gov https://www.exploit-db.com/exploits/40805/https://www.kb.cert.org/vuls/id/677427

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-6563

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect