Stack-Based Buffer Overflow in D-Link DIR-816 A2 Router
CVE-2018-17065
9.8CRITICAL
What is CVE-2018-17065?
A stack-based buffer overflow vulnerability is present in D-Link DIR-816 A2 1.10 B05 devices. The /goform/DDNS route's handler function does not adequately validate the length of user-submitted passwords, allowing attackers to exploit this by inputting an excessively long password. This could result in overwriting the return address, potentially leading to arbitrary code execution or denial of service. Users are advised to review their device configurations and apply necessary updates to mitigate the risk.