Buffer Overflow in D-Link COVR-2600R FW101b05 via HTTP_REFERER
CVE-2024-44674 Published on October 7, 2024

D-Link COVR-2600R FW101b05 is vulnerable to Buffer Overflow. In the function sub_24E28, the HTTP_REFERER is obtained through an environment variable, and this field is controllable, allowing it to be used as the value for src.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

HIGH

Availability Impact:

NONE

Weakness Type

What is a Stack Overflow Vulnerability?

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CVE-2024-44674 has been classified to as a Stack Overflow vulnerability or weakness.

Products Associated with CVE-2024-44674

Want to know whenever a new CVE is published for D-Link Covr 2600r Firmware? stack.watch will email you.

D-Link Covr 2600r Firmware

Exploit Probability

EPSS

2.93%

Percentile

86.25%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Buffer Overflow in D-Link COVR-2600R FW101b05 via HTTP_REFERERCVE-2024-44674 Published on October 7, 2024

Vulnerability Analysis

Weakness Type

What is a Stack Overflow Vulnerability?

Products Associated with CVE-2024-44674

Exploit Probability

Buffer Overflow in D-Link COVR-2600R FW101b05 via HTTP_REFERER
CVE-2024-44674 Published on October 7, 2024