April 18, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple Microsoft Products Vulnerabilities
September 23, 2024Chinese Cybercriminals Use GeoServer Vulnerability to Propagate EAGLEDOOR Malware in APAC Countries – Active IOCs
September 23, 2024Multiple Microsoft Products Vulnerabilities
September 23, 2024Chinese Cybercriminals Use GeoServer Vulnerability to Propagate EAGLEDOOR Malware in APAC Countries – Active IOCs
September 23, 2024
Severity
High
Analysis Summary
CVE-2024-44589 CVSS:9.8
D-Link DCS-960L is vulnerable to a buffer overflow, caused by improper bounds checking. By sending a specially crafted string to Login function in the HNAP service, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.
CVE-2024-9004 CVSS:6.3
D-Link DAR-7000 could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a flaw in Backup_Server_commit.php. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system.
Impact
- Buffer Overflow
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-44589
- CVE-2024-9004
Affected Vendors
D-Link
Affected Products
- D-Link DCS-960L 1.09
- D-Link DAR-7000 - 20240912
Remediation
Refer to D-Link Website for patch, upgrade or suggested workaround information.
