CVE-2023-27719

Vulnerability

A stack-based buffer overflow exists in the sub_478360 function of D-Link DIR878 firmware version 1.30B08. The function reads a user-provided parameter and passes it to a buffer without any length check, leading to a stack buffer overflow when a crafted payload is sent. The vulnerability is reachable by requesting a specific page on the device management interface [1].

Exploitation

An attacker can exploit this vulnerability by sending a crafted HTTP request to the affected D-Link DIR878 router running firmware 1.30B08. No authentication is required as the vulnerable function is accessible without prior login. The attacker needs network access to the device's management interface. By providing an oversized payload in the request parameter, the buffer is overflowed, potentially overwriting the stack [1].

Impact

Successful exploitation allows an attacker to cause a denial of service (DoS) by crashing the device, or to execute arbitrary code with the privileges of the web server process, typically root. This can lead to full compromise of the router, including control over network traffic and connected devices [1].

Mitigation

As of the publication date (2023-04-09), no official fix or patched firmware version has been released by D-Link. The affected version DIR878_REVA_FIRMWARE_v1.30B08 is still available. Users should monitor D-Link's security bulletin [2] for updates. Until a fix is available, consider isolating the device from untrusted networks or upgrading to a supported model if the device reaches end-of-life [2].