soulll8/Vuln-Poc

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Stars5

Vulnerability Detail & Poc

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-20305 ↗	Dec 20, 2018Thursday, 20 December 2018, 00:29	—	7.5 HIGH
D-Link DIR-816 A2 1.10 B05 devices allow arbitrary remote code execution without authentication via the newpass parameter. In the /goform/form2userconfig.cgi handler function, a long password may lead to a stack-based buffer overflow and overwrite a return address.