Signature Detail

Short Name	APP:UPNP:DLINK-SEARCH-NOTIFY
Severity	Medium
Recommended	No
Category	APP
Keywords	D-Link Router SEARCH/NOTIFY Buffer Overflow
Release Date	2006/11/16
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: D-Link Router SEARCH/NOTIFY Buffer Overflow

This signature detects possible attempts to exploit a known vulnerability in the D-Link router UPNP. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the system.

Extended Description

D-Link wired and wireless routers are prone to a buffer-overflow vulnerability because these devices fail to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Successful exploits can allow remote attackers to execute arbitrary machine code in the context of the affected device.

Affected Products

D-Link DI-524 Rev A
D-Link DI-524 Rev B1
D-Link DI-524 Rev B2
D-Link DI-524 Rev C
D-Link DI-524 Rev D
D-Link DI-604 Rev E
D-Link DI-624 Rev C
D-Link DI-624 Rev D
D-Link DI-784 Rev A
D-Link EBR-2310 Rev A
D-Link WBR-1310 Rev A
D-Link WBR-2310 Rev A

References

BugTraq: 19006
CVE: CVE-2006-3687
URL: http://www.eeye.com/html/research/advisories/AD20060714.html
URL: http://www.frsirt.com/english/advisories/2006/2829

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: D-Link Router SEARCH/NOTIFY Buffer Overflow

Extended Description

Affected Products

References