Vulnerability Details CVE-2016-6563
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following products are affected: DIR-823, DIR-822, DIR-818L(W), DIR-895L, DIR-890L, DIR-885L, DIR-880L, DIR-868L, and DIR-850L.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.883
EPSS Ranking 99.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://seclists.org/fulldisclosure/2016/Nov/38
- http://www.securityfocus.com/bid/94130
- https://www.exploit-db.com/exploits/40805/
- https://www.kb.cert.org/vuls/id/677427
- http://seclists.org/fulldisclosure/2016/Nov/38
- http://www.securityfocus.com/bid/94130
- https://www.exploit-db.com/exploits/40805/
- https://www.kb.cert.org/vuls/id/677427
Products affected by CVE-2016-6563
-
cpe:2.3:h:dlink:dir-818l(w):-
-
cpe:2.3:h:dlink:dir-822:-
-
cpe:2.3:h:dlink:dir-823:-
-
cpe:2.3:h:dlink:dir-850l:-
-
cpe:2.3:h:dlink:dir-868l:-
-
cpe:2.3:h:dlink:dir-880l:-
-
cpe:2.3:h:dlink:dir-885l:-
-
cpe:2.3:h:dlink:dir-890l:-
-
cpe:2.3:h:dlink:dir-895l:-
-
cpe:2.3:o:dlink:dir-818l(w)_firmware:-
-
cpe:2.3:o:dlink:dir-822_firmware:-
-
cpe:2.3:o:dlink:dir-823_firmware:-
-
cpe:2.3:o:dlink:dir-850l_firmware:-
-
cpe:2.3:o:dlink:dir-868l_firmware:-
-
cpe:2.3:o:dlink:dir-880l_firmware:-
-
cpe:2.3:o:dlink:dir-885l_firmware:-
-
cpe:2.3:o:dlink:dir-890l_firmware:-
-
cpe:2.3:o:dlink:dir-895l_firmware:-