← voltar
CVE-2025-4544

D-Link DI-8100 jhttpd ddos.asp stack-based overflow

CVSS 7.5 HIGHEPSS 6.5%CWE-119CWE-121
A vulnerability was found in D-Link DI-8100 up to 16.07.26A1 and classified as critical. This issue affects some unknown processing of the file /ddos.asp of the component jhttpd. The manipulation of the argument def_max/def_time/def_tcp_max/def_tcp_time/def_udp_max/def_udp_time/def_icmp_max leads to stack-based buffer overflow. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult.
CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
D-Link · DI-8100

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://github.com/Yhuanhuan01/DI-8100_Vulnerability_Report/blob/main/Vulnerability_Report.mdhttps://vuldb.com/?ctiid.308291https://vuldb.com/?id.308291https://vuldb.com/?submit.562695https://www.dlink.com/