Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2052

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2015-2052
Last Modified 24 Feb 2015 12:19:27
Published 23 Feb 2015 12:59:09
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2052

Summary

Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings action to the HNAP interface.

Vulnerable Systems

Operating System

  • D-link Dir-645 Firmware 1.04b12


References

CONFIRM - http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10051


Last Updated: 27 May 2016 11:07:55