Vulnerabilities > D Link
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-09-24 | CVE-2009-3347 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in D-Link Dir-400 Buffer overflow on the D-Link DIR-400 wireless router allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.10 through 8.11. | 10.0 |
| 2008-10-28 | CVE-2008-4771 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Stack-based buffer overflow in VATDecoder.VatCtrl.1 ActiveX control in (1) 4xem VatCtrl Class (VATDecoder.dll 1.0.0.27 and 1.0.0.51), (2) D-Link MPEG4 SHM Audio Control (VAPGDecoder.dll 1.7.0.5), (3) Vivotek RTSP MPEG4 SP Control (RtspVapgDecoderNew.dll 2.0.0.39), and possibly other products, allows remote attackers to execute arbitrary code via a long Url property. | 9.3 |
| 2008-09-19 | CVE-2008-4133 | Improper Input Validation vulnerability in D-Link Dir-100 1.02/1.12 The web proxy service on the D-Link DIR-100 with firmware 1.12 and earlier does not properly filter web requests with large URLs, which allows remote attackers to bypass web restriction filters. | 4.3 |
| 2008-03-10 | CVE-2008-1258 | Cross-Site Scripting vulnerability in D-Link Di-604 Cross-site scripting (XSS) vulnerability in prim.htm on the D-Link DI-604 router allows remote attackers to inject arbitrary web script or HTML via the rf parameter. | 4.3 |
| 2008-03-10 | CVE-2008-1253 | Cross-Site Scripting vulnerability in D-Link Dsl-G604T Cross-site scripting (XSS) vulnerability in cgi-bin/webcm on the D-Link DSL-G604T router allows remote attackers to inject arbitrary web script or HTML via the var:category parameter, as demonstrated by a request for advanced/portforw.htm on the fwan page. | 4.3 |
| 2007-06-05 | CVE-2007-0933 | Buffer Overflow vulnerability in D-Link DWL-G650 TIM Information Element Wireless Driver Beacon Buffer overflow in the wireless driver 6.0.0.18 for D-Link DWL-G650+ (Rev. | 7.8 |
| 2007-03-13 | CVE-2007-1435 | Remote Buffer Overflow vulnerability in D-Link Tftp Server 1.0 Buffer overflow in D-Link TFTP Server 1.0 allows remote attackers to cause a denial of service (crash) via a long (1) GET or (2) PUT request, which triggers memory corruption. | 10.0 |
| 2006-12-14 | CVE-2006-6538 | Denial-Of-Service vulnerability in D-Link Dwl-2000Ap+ 2.11 D-LINK DWL-2000AP+ firmware 2.11 allows remote attackers to cause (1) a denial of service (device reset) via a flood of ARP replies on the wired or wireless (radio) link and (2) a denial of service (device crash) via a flood of ARP requests on the wireless link. | 7.8 |
| 2006-11-22 | CVE-2006-6055 | Stack Buffer Overflow vulnerability in D-Link DWL-G132 ASAGU.SYS Wireless Device Driver Stack-based buffer overflow in A5AGU.SYS 1.0.1.41 for the D-Link DWL-G132 wireless adapter allows remote attackers to execute arbitrary code via a 802.11 beacon request with a long Rates information element (IE). | 10.0 |
| 2006-10-26 | CVE-2006-5538 | Remote Security vulnerability in D-Link Dsl-G624T 3.00B01T01.Yac.20060616 D-Link DSL-G624T firmware 3.00B01T01.YA-C.20060616 allows remote attackers to list contents of the cgi-bin directory via unspecified vectors, probably a direct request. | 5.0 |