Stack-based Buffer Overflow in D-Link DI-8100 Router
CVE-2025-4544

7.5HIGH

Key Information:

Vendor

D-link

Status
Vendor
CVE Published:
11 May 2025

What is CVE-2025-4544?

A stack-based buffer overflow vulnerability exists in the D-Link DI-8100 router impacting versions up to 16.07.26A1. The flaw is related to improper handling of arguments in the /ddos.asp file of the jhttpd component. Exploiting this vulnerability allows an attacker to manipulate various parameters such as def_max, def_time, def_tcp_max, and others, potentially enabling them to execute remote attacks. Despite the complexity of exploitation, this vulnerability poses a risk that could compromise the integrity of the affected device.

Affected Version(s)

DI-8100 16.07.26A1

References

CVSS V4

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

huan (VulDB User)
.
CVE-2025-4544 : Stack-based Buffer Overflow in D-Link DI-8100 Router