February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Update – Vulnerabilities in Microsoft PC Manager Enable Potent Supply-Chain Attacks
October 9, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
October 10, 2023Rewterz Threat Update – Vulnerabilities in Microsoft PC Manager Enable Potent Supply-Chain Attacks
October 9, 2023Rewterz Threat Alert – An Emerging Ducktail Infostealer – Active IOCs
October 10, 2023
Severity
High
Analysis Summary
CVE-2023-44418 CVSS:8.8
D-Link DIR-X3260 routers is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the prog.cgi binary. By sending a specially crafted request, a remote attacker could overflow a buffer and execute arbitrary code in the context of root.
CVE-2023-44415 CVSS:6.8
D-Link DIR-1260 and DIR-2150 routers could allow a remote authenticated attacker to execute arbitrary code on the system, caused by a flaw in the CLI service. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of root.
Impact
- Gain Access
- Code Execution
Indicators Of Compromise
CVE
- CVE-2023-44418
- CVE-2023-44415
Affected Vendors
D-Link
Affected Products
- D-Link DIR-X3260
- D-Link DIR-2150
- D-Link DIR-1260
Remediation
Refer to D-Link Web site for patch, upgrade or suggested workaround information.