CVE-2006-3687

D-Link Routers - UPNP Buffer Overflow

Severity Score

7.5

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.

Desbordamiento de búfer basado en pila en el servicio Universal Plug and Play (UPnP) de D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router permite a atacantes remotos ejecutar código de su elección mediante una petición M-SEARCH larga al puerto UDP 1900.

*Credits: N/A

CVSS Scores

NISTv2 7.5

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-07-17 First Exploit
2006-07-18 CVE Reserved
2006-07-18 CVE Published
2023-04-14 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (12)

URL	Tag	Source
http://archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.html	Mailing List
http://securitytracker.com/id?1016511	Vdb Entry
http://www.eeye.com/html/research/advisories/AD20060714.html	X_refsource_misc
http://www.kb.cert.org/vuls/id/971705	Third Party Advisory
http://www.osvdb.org/27333	Vdb Entry
http://www.securityfocus.com/archive/1/440298/100/0/threaded	Mailing List
http://www.securityfocus.com/archive/1/440852/100/100/threaded	Mailing List
http://www.securityfocus.com/bid/19006	Vdb Entry
http://www.vupen.com/english/advisories/2006/2829	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/27755	Vdb Entry

URL	Date	SRC
https://www.exploit-db.com/exploits/28230	2006-07-17

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/21081	2023-04-26

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
D-link Search vendor "D-link"		Di-604 Broadband Router Search vendor "D-link" for product "Di-604 Broadband Router"				*		-		Affected
D-link Search vendor "D-link"		Di-784 Search vendor "D-link" for product "Di-784"				*		-		Affected
D-link Search vendor "D-link"		Ebr-2310 Ethernet Broadband Router Search vendor "D-link" for product "Ebr-2310 Ethernet Broadband Router"				*		-		Affected
D-link Search vendor "D-link"		Wbr-1310 Wireless G Router Search vendor "D-link" for product "Wbr-1310 Wireless G Router"				*		-		Affected
D-link Search vendor "D-link"		Wbr-2310 Rangebooster G Router Search vendor "D-link" for product "Wbr-2310 Rangebooster G Router"				*		-		Affected
Dlink Search vendor "Dlink"		Di-524 Search vendor "Dlink" for product "Di-524"				*		-		Affected
Dlink Search vendor "Dlink"		Di-624 Search vendor "Dlink" for product "Di-624"				*		-		Affected