Stack-based Buffer Overflow in D-Link Router UPnP Service
CVE-2006-3687

Currently unrated

What is CVE-2006-3687?

A stack-based buffer overflow exists within the Universal Plug and Play (UPnP) service of various D-Link routers, including models DI-524, DI-604, DI-624, DI-784, WBR-1310, WBR-2310, and EBR-2310. This vulnerability allows remote attackers to exploit the UPnP service via specially crafted M-SEARCH requests sent to UDP port 1900, potentially leading to arbitrary code execution on the affected devices.

References

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.