CVE-2016-6563
Published: Jul 13, 2018
Modified: Aug 6, 2024
Description
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-823, DIR-822, DIR-818L(W), DIR-895L, DIR-890L, DIR-885L, DIR-880L, DIR-868L, and DIR-850L.
| Vendor | Product | Versions |
|---|---|---|
D-Link | DIR-823 | unknown N/A |
D-Link | DIR-822 | unknown N/A |
D-Link | DIR-818L(W) | unknown N/A |
D-Link | DIR-895L | unknown N/A |
D-Link | DIR-890L | unknown N/A |
D-Link | DIR-885L | unknown N/A |
D-Link | DIR-880L | unknown N/A |
D-Link | DIR-868L | unknown N/A |
D-Link | DIR-850L | unknown N/A |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now