EIP-2026-101238

PRE-CVE

D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101238. PoCs published by Samuel Huntley.

AI-analyzed exploit summary The exploit demonstrates two buffer overflow vulnerabilities in D-Link DIR-880L routers, one in HNAP and another in authentication. Both can be exploited by unauthenticated attackers to achieve remote code execution (RCE) by bypassing ASLR through repeated exploitation attempts.

Description

D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Samuel Huntley · textremotehardware

https://www.exploit-db.com/exploits/38725

View Code ZIP pw:eip

The exploit demonstrates two buffer overflow vulnerabilities in D-Link DIR-880L routers, one in HNAP and another in authentication. Both can be exploited by unauthenticated attackers to achieve remote code execution (RCE) by bypassing ASLR through repeated exploitation attempts.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Racy

Target: D-Link DIR-880L (firmware version unspecified)

No auth needed

Prerequisites: Network access to the target device · Repeated exploitation attempts (200-500 times) to bypass ASLR

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026