The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1 devices allows attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a session.cgi?ACTION=logout request involving a long REMOTE_ADDR environment variable.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-05-12T04:00:00
Updated: 2024-08-05T07:54:36.308Z
Reserved: 2018-05-11T00:00:00
Link: CVE-2018-10996
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-05-12T04:29:00.207
Modified: 2018-06-18T14:58:31.817
Link: CVE-2018-10996
Redhat
No data.