CVE-2006-3687
CVE-2006-3687
Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/28230unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.htmlhttp://secunia.com/advisories/21081http://securitytracker.com/id?1016511https://exchange.xforce.ibmcloud.com/vulnerabilities/27755http://www.eeye.com/html/research/advisories/AD20060714.htmlhttp://www.kb.cert.org/vuls/id/971705http://www.osvdb.org/27333http://www.securityfocus.com/archive/1/440298/100/0/threadedhttp://www.securityfocus.com/archive/1/440852/100/100/threadedhttp://www.securityfocus.com/bid/19006http://www.vupen.com/english/advisories/2006/2829