Unrated severityNVD Advisory· Published Jul 21, 2006· Updated Apr 16, 2026

CVE-2006-3687

Description

Stack-based buffer overflow in the Universal Plug and Play (UPnP) service in D-Link DI-524, DI-604 Broadband Router, DI-624, D-Link DI-784, WBR-1310 Wireless G Router, WBR-2310 RangeBooster G Router, and EBR-2310 Ethernet Broadband Router allows remote attackers to execute arbitrary code via a long M-SEARCH request to UDP port 1900.

Affected products

Dlink/Di 524
cpe:2.3:h:dlink:di-524:*:*:*:*:*:*:*:*
D-Link/Di 604 Broadband Router
cpe:2.3:h:d-link:di-604_broadband_router:*:*:*:*:*:*:*:*
Dlink/Di 624
cpe:2.3:h:dlink:di-624:*:*:*:*:*:*:*:*
D-Link/Di 784
cpe:2.3:h:d-link:di-784:*:*:*:*:*:*:*:*
D-Link/Ebr 2310 Ethernet Broadband Router
cpe:2.3:h:d-link:ebr-2310_ethernet_broadband_router:*:*:*:*:*:*:*:*
D-Link/Wbr 1310 Wireless G Router
cpe:2.3:h:d-link:wbr-1310_wireless_g_router:*:*:*:*:*:*:*:*
D-Link/Wbr 2310 Rangebooster G Router
cpe:2.3:h:d-link:wbr-2310_rangebooster_g_router:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/21081nvdVendor Advisory
www.kb.cert.org/vuls/id/971705nvdUS Government Resource
archives.neohapsis.com/archives/fulldisclosure/2006-07/0363.htmlnvd
securitytracker.com/idnvd
www.eeye.com/html/research/advisories/AD20060714.htmlnvd
www.osvdb.org/27333nvd
www.securityfocus.com/archive/1/440298/100/0/threadednvd
www.securityfocus.com/archive/1/440852/100/100/threadednvd
www.securityfocus.com/bid/19006nvd
www.vupen.com/english/advisories/2006/2829nvd
exchange.xforce.ibmcloud.com/vulnerabilities/27755nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.017
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000