This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-1935 1.03 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of SetStaticRouteIPv4Settings requests to the web management portal. When parsing the NetMask element, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-16144.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: zdi
Published: 2023-03-29T00:00:00
Updated: 2024-08-03T13:40:05.474Z
Reserved: 2022-10-21T00:00:00
Link: CVE-2022-43625
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-03-29T19:15:19.563
Modified: 2023-11-08T23:00:54.513
Link: CVE-2022-43625
Redhat
No data.