CVE-2021-40284
MEDIUMD-Link DSL-3782 EU v1.01:EU v1.03 - Buffer Overflow
Title source: llmDescription
D-Link DSL-3782 EU v1.01:EU v1.03 is affected by a buffer overflow which can cause a denial of service. This vulnerability exists in the web interface "/cgi-bin/New_GUI/Igmp.asp". Authenticated remote attackers can trigger this vulnerability by sending a long string in parameter 'igmpsnoopEnable' via an HTTP request.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.dlink.com/en/security-bulletin/
Patch, Vendor Advisory x_refsource_misc
https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10245
Scores
CVSS v3
6.5
EPSS
0.0023
EPSS Percentile
45.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-120
Status
published
Products (2)
dlink/dsl-3782_firmware
eu_1.01
dlink/dsl-3782_firmware
eu_1.03
Published
Sep 09, 2021
Tracked Since
Feb 18, 2026