Vulnerability Details CVE-2011-3992
Buffer overflow in the SSH server functionality on the D-Link DES-3800 with firmware before 4.50B052, DWL-2100AP with firmware before 2.50RC548, and DWL-3200AP with firmware before 2.55RC549 allows remote attackers to execute arbitrary code or cause a denial of service via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.6%
CVSS Severity
CVSS v2 Score 10.0
References
- http://jvn.jp/en/jp/JVN72640744/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2011-000092
- http://osvdb.org/76628
- http://www.dlink-jp.com/page/sc/F/security_info20111028.html
- http://www.securityfocus.com/bid/50405
- http://jvn.jp/en/jp/JVN72640744/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2011-000092
- http://osvdb.org/76628
- http://www.dlink-jp.com/page/sc/F/security_info20111028.html
- http://www.securityfocus.com/bid/50405
Products affected by CVE-2011-3992
-
cpe:2.3:a:dlink:dwl-2100ap_firmware:2.50
-
cpe:2.3:a:dlink:dwl-3200ap_firmware:2.40
-
cpe:2.3:a:dlink:dwl-3200ap_firmware:2.55
-
cpe:2.3:h:dlink:des-3800:-
-
cpe:2.3:h:dlink:dwl-2100ap:-
-
cpe:2.3:h:dlink:dwl-3200ap:-
-
cpe:2.3:o:dlink:des-3800_firmware:4.00
-
cpe:2.3:o:dlink:des-3800_firmware:4.50