• Home Support Forums Security Advisories Shop     English | French
Support Announcement
DIR-882-US :: H/W Rev. Ax :: F/W v1.30B06: ZDI-CAN-11682 HNAP LAN-Side Stack-based Buffer Overflow (RCE) Vulnerability LAN-Side Stack-based Buffer Overflow (RCE) Vulnerability

Overview

On October 2, 2020, a 3rd party security researcher from Trend Micro, the Zero Day Initiative (ZDI) submitted a report accusing the DIR-882 using firmware v1.30B06 of a LAN-side Stack-based Buffer Overflow (RCE) exploit.   The Vulnerability is under investigation, if the vulnerability confirmed, a patch will be issued too close the reported issue.  


3rd Party Report information

 

          - Report providedTrend Micro, the Zero Day Initiative (ZDI :: zdi-disclosures _at_ trendmicro _dot_ com

 
          - Reference : To Be Post upon author's public disclosure

 

               - The attack is affective on LAN-side of device only, since HNAP is a LAN-side protocol which is not exposed to the internet, An unauthenticated stack buffer overflow in the HNAP service due to the use of `strcat` to copy attacker-controlled POST request data to a 0x200-byte stack buffer when the User-Agent string is set to "Edge".

    

 Affected Models

 

Model Hardware Revision Affected FW Fixed FW Recommendation  Last Updated
DIR-882-US All Ax Hardware Revisions v1.30B06 & Below v1.30B06_beta01 Please download and update 04/08/2021

  

Regarding Security patch for your D-Link Devices
 
Firmware updates address the security vulnerabilities in affected D-Link devices. D-Link will update this continually and we strongly recommend all users to install the relevant updates.
 
Please note that this is a device beta software, beta firmware, or hot-fix release which is still undergoing final testing before its official release. The beta software, beta firmware, or hot-fix is provided on an “as is” and “as available” basis and the user assumes all risk and liability for use thereof. D-Link does not provide any warranties, whether express or implied, as to the suitability or usability of the beta firmware. D-Link will not be liable for any loss, whether such loss is direct, indirect, special or consequential, suffered by any party as a result of their use of the beta firmware.
 
As there are different hardware revisions on our products, please check this on your device before downloading the correct corresponding firmware update. The hardware revision information can usually be found on the product label on the underside of the product next to the serial number. Alternatively, they can also be found on the device web configuration.