exploitDog

CVE-2006-3687

Опубликовано: 21 июл. 2006

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:h:d-link:di-604_broadband_router:*:*:*:*:*:*:*:*

cpe:2.3:h:d-link:di-784:*:*:*:*:*:*:*:*

cpe:2.3:h:d-link:ebr-2310_ethernet_broadband_router:*:*:*:*:*:*:*:*

cpe:2.3:h:d-link:wbr-1310_wireless_g_router:*:*:*:*:*:*:*:*

cpe:2.3:h:d-link:wbr-2310_rangebooster_g_router:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:di-524:*:*:*:*:*:*:*:*

cpe:2.3:h:dlink:di-624:*:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.20829

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-w54f-j9wc-72mq

github

почти 4 года назад

Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.

EPSS

Процентиль: 95%

0.20829

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other