CVE Details
Basic Information
| Title | D-Link DIR-632 HTTP POST Request biurl_grou FUN_00425fd8 stack-based overflow |
|---|---|
| Type | cve |
| Published | 2025-06-10T16:31:04.946Z |
| Last Seen |
Product Information
| Vendor | D-Link |
|---|---|
| Product | DIR-632 |
| Version | FW103B08 |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A critical stack-based buffer overflow vulnerability in D-Link DIR-632 routers allows remote attackers to cause a stack overflow via the HTTP POST handler. This can lead to potential system crashes or code execution. The vulnerability is especially concerning as the product is no longer supported, meaning no official patches are available. |
|---|---|
| AI Severity | High |
| Vendor | D-Link |
| Product | DIR-632 |
| Affected Version | FW103B08 |
Affected Products
- D-Link DIR-632 FW103B08
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-121, CWE-119 |
| Bulletin Family |
References
Description
A vulnerability has been found in D-Link DIR-632 FW103B08 and classified as critical. Affected by this vulnerability is the function FUN_00425fd8 of the file /biurl_grou of the component HTTP POST Request Handler. The manipulation leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.