D-Link DIR-3040 prog.cgi SetDeviceSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-41224

6.8MEDIUM

Key Information:

Vendor: D-link
Status: Dir-3040
Vendor: CVE Published:; 3 May 2024

Summary

A stack-based buffer overflow vulnerability exists within the D-Link DIR-3040 router, specifically in the prog.cgi binary that processes HNAP requests through the lighttpd webserver on TCP ports 80 and 443. This flaw arises from inadequate validation of user-supplied strings, which can lead to significant security implications. If exploited, this vulnerability enables a network-adjacent attacker to execute arbitrary code with root privileges on the affected device. Successful exploitation necessitates authentication, thereby limiting access to potential attackers. Proper measures must be taken to mitigate this risk to network integrity.

Affected Version(s)

DIR-3040 120B03

References

https://www.zerodayinitiative.com/advisories/ZDI-23-1332/

x_research-advisory

https://supportannouncement.us.dlink.com/announcement/pub...

vendor-advisory

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 3, 2024
Vulnerability Reserved
Aug 24, 2023