CVE-2024-27619

Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having read/write access to ftp server can write directly to ram causing buffer overflow if file or files uploaded are greater than available ram. Ftp server allows change of directory to root which is one level up than root of usb flash directory. During upload ram is getting filled and causing system resource exhaustion (no free memory) which causes system to crash and reboot.

CVSS v3 7.3 HIGH

7.3^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.1 / Impact : 5.2

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://dir-3040us.com
https://github.com/ioprojecton/dir-3040_dos
https://www.dlink.com/en/security-bulletin/
http://dir-3040us.com
https://github.com/ioprojecton/dir-3040_dos
https://www.dlink.com/en/security-bulletin/

Configurations

No configuration.

History

21 Nov 2024, 09:04

Type	Values Removed	Values Added
References	~~() http://dir-3040us.com -~~	() http://dir-3040us.com -
References	~~() https://github.com/ioprojecton/dir-3040_dos -~~	() https://github.com/ioprojecton/dir-3040_dos -
References	~~() https://www.dlink.com/en/security-bulletin/ -~~	() https://www.dlink.com/en/security-bulletin/ -

04 Sep 2024, 17:35

Type	Values Removed	Values Added
CWE		CWE-120
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.3

29 Mar 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-03-29 15:15

Updated : 2024-11-21 09:04

NVD link : CVE-2024-27619

Mitre link : CVE-2024-27619

CVE.ORG link : CVE-2024-27619

JSON object : View

Products Affected

No product.

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

{"id": "CVE-2024-27619", "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 2.1}]}, "published": "2024-03-29T15:15:11.057", "references": [{"url": "http://dir-3040us.com", "source": "cve@mitre.org"}, {"url": "https://github.com/ioprojecton/dir-3040_dos", "source": "cve@mitre.org"}, {"url": "https://www.dlink.com/en/security-bulletin/", "source": "cve@mitre.org"}, {"url": "http://dir-3040us.com", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/ioprojecton/dir-3040_dos", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.dlink.com/en/security-bulletin/", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having read/write access to ftp server can write directly to ram causing buffer overflow if file or files uploaded are greater than available ram. Ftp server allows change of directory to root which is one level up than root of usb flash directory. During upload ram is getting filled and causing system resource exhaustion (no free memory) which causes system to crash and reboot."}, {"lang": "es", "value": "La revisi\u00f3n Dlink Dir-3040us A1 1.20b03a es vulnerable al desbordamiento del b\u00fafer. Cualquier usuario que tenga acceso de lectura/escritura al servidor ftp puede escribir directamente en la RAM, provocando un desbordamiento del b\u00fafer si el archivo o los archivos cargados son mayores que la RAM disponible. El servidor Ftp permite cambiar el directorio a la ra\u00edz, que est\u00e1 un nivel por encima de la ra\u00edz del directorio flash USB. Durante la carga, la RAM se llena y provoca que se agoten los recursos del sistema (no hay memoria libre), lo que provoca que el sistema falle y se reinicie."}], "lastModified": "2024-11-21T09:04:48.367", "sourceIdentifier": "cve@mitre.org"}