EIP-2026-101011

PRE-CVE

D-Link DSL-2650U - Denial of Service (PoC)

Title source: legacy
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101011. PoCs published by Li'el Fridman.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in the Dlink DSL-2650U router's diagpppoe.cgi endpoint, causing a Denial of Service (DoS) by sending an excessively long string in the 'diagPrev' parameter. The PoC requires authentication and demonstrates the vulnerability by crashing the device.

Description

D-Link DSL-2650U - Denial of Service (PoC)

Exploits (1)

exploitdb WORKING POC
by Li'el Fridman · pythondoshardware
https://www.exploit-db.com/exploits/17501

This exploit targets a buffer overflow vulnerability in the Dlink DSL-2650U router's diagpppoe.cgi endpoint, causing a Denial of Service (DoS) by sending an excessively long string in the 'diagPrev' parameter. The PoC requires authentication and demonstrates the vulnerability by crashing the device.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Dlink DSL-2650U firmware version 1.20
Auth required
Prerequisites: Network access to the router · Valid credentials for authentication
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Details

Status pre_cve
Tracked Since Feb 18, 2026