CVE-2005-4723

D-Link DI-524, DI-624, and DI-784 - Denial of Service via Crafted Fragmented UDP Packets

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4723. PoCs published by Aaron Portnoy.

AI-analyzed exploit summary This exploit sends fragmented UDP packets to a D-Link Wireless Access Point, triggering a denial-of-service condition. It uses the libnet library to craft and send malformed packets with specific fragmentation flags.

Description

D-Link DI-524 Wireless Router, DI-624 Wireless Router, and DI-784 allow remote attackers to cause a denial of service (device reboot) via a series of crafted fragmented UDP packets, possibly involving a missing fragment.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Aaron Portnoy · cdoshardware

https://www.exploit-db.com/exploits/1496

View Code ZIP pw:eip

This exploit sends fragmented UDP packets to a D-Link Wireless Access Point, triggering a denial-of-service condition. It uses the libnet library to craft and send malformed packets with specific fragmentation flags.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: D-Link Wireless Access Point (specific model/version not specified)

No auth needed

Prerequisites: Network access to the target device · libnet library installed

MITRE ATT&CK