virus logo Intrusion Prevention

D-Link.Authorization.HTTP.Header.SessionID.Buffer.Overflow

description-logoDescription

This indicates an attack attempt to exploit a Buffer Overflow vulnerability in D-Link DIR-615 devices.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling a crafted HTTP request. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application, via a crafted HTTP request.

affected-products-logoAffected Products

D-Link DIR-615 devices

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-01-17 14.526 Sig Added
2018-10-31 13.482 Default_action:pass:drop
2018-09-28 13.460

References

https://hackingvila.wordpress.com/2018/08/24/d-link-dir-615-buffer-overflow-via-a-long-authorization-http-header-click-here/ 45317
ID 46947
Created Sep 28, 2018
Updated Jan 16, 2019
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2018-15839
Exploit Prediction Score 71.54%
Default Action drop
Active
Affected OS Linux
Affected App Other