From 12ff336971c4230edf02159e8c5a006ea28e1d4a Mon Sep 17 00:00:00 2001 From: Github-Bot Date: Sat, 4 May 2024 03:26:18 +0000 Subject: [PATCH] Updated by Github Bot --- cache/RedQueen.dat | 3 +++ data/cves.db | Bin 47357952 -> 47357952 bytes docs/index.html | 4 ++-- 3 files changed, 5 insertions(+), 2 deletions(-) diff --git a/cache/RedQueen.dat b/cache/RedQueen.dat index e7952557bea..7f10e0d01ee 100644 --- a/cache/RedQueen.dat +++ b/cache/RedQueen.dat @@ -174,3 +174,6 @@ a54acc2967c672e5e38caeda252841f3 1e08c25047fa9f92b66aee2e4958217b 9bcdce8067fbda8dfe25caea500fb8d2 c46a26d684fb5e2757ff7808512144bf +9db583c37156a3fdbfb4df45612408b0 +67733a9f8c1f6254caf89c10153ab4af +8c859af799731748976056b3a847eb82 diff --git a/data/cves.db b/data/cves.db index 2a48e3d246be9fc273335bb13d8ef5f7c7c58cf7..e23557af0f76e633e514e4a5aaf763c259bbb2e4 100644 GIT binary patch delta 3115 zcmZY8ceoDpAI9;{NwOtUR#7VAsb`N8S(T7V*>OM5InRTR(6OSzDYsQt5i*V>WUoWW zXqRYc?|HQM9;&zg`(3|3Uf1{Y=li;^>pOA(fw~hhyFuQvISt$AEh~|gXXRVRTNSJm ztcuo&Rwb*lRmG}mRkNyFHLRM}NmecEWUIDS$2!HTYn^JHX4SLmTMev+RwL_l>kO;0 z)xu~R>DeJDeFS(BCC~k zvDMmYV_jmkwc1(jtqxX4>r(47>vF4;b%oX0>SA@ZuC%&YS6NqE*I3=HYpv_79#&7Q zm(|}L0h;^ei)EZ_Dw{EhEtr6Bp zYm_zG8e`pTjkU&Ew^+AYw^`$@3D!ib#Jb(O!DHarUDgb1rZvl& zZOyUnw(ha!TJx-Xt@+jhYoT?Ywa8j*EwPqbrPea*ervh)fVIMU&{}D&vQ}FUS!=Ad z);epwwZYnGZL&67Tdb|tHml6qZtbuhwsu;(tlicl)*frGwa?mbJ!(B>J#IZ=J!w5< zJ#9T>J!>7Xp0f^GhpgwV7pxbpm#o9q%hoH_tJZ7Q>((3Ao7P*_+txeQyViTw`_>26 zht@~d$JQrSxpl<))cVZ&-1@@$()!B!+WN-&*80x+-ul7%(fY~y+4{x$)%wl)-TK4& z)B4LgYW;2fGfjCjl!tsAj|w;e6>%aep)#tVDypG6YM>@gLM@z(+Ngt5P#34-G}J?V zG(bZ%!s$2zjnM>W;w&`9**FL1q8XawJhVVd1aLksKoB8>5kV9&#F0P}DO`w)&u1J^Et+ zj_sdD1_dZY7C8*WAPmM0D8dljh@lvU;kXIK7=e)(h0z#;n=uySa0_n5Z5WRUn1~YG zjyo_3#$-&vR7}Hk+=;s|12ZuTvoQyE;~vb#Jlu=hwl!fHH(HCT&vSdR_Zh)vjxE!c`}D8qK_z{A*yUD%CBum^jw5Bu>b9>e2!0#D*8 zJdJ1YEDqo~9K<0!j~DPFUczC#j92g~Uc>8n18?Fjyp4D8F5biY_y8Z`BYcccP>v(` z6rbU9e1R|V6~4wd_!i&cd;EYO@e_W=FZdO|;dlIjKk*li;&1$uH%<9`f8^tMRKN+S zh!ar>l~Dy%Q4Q5m12u6HYT;zmMjf1jx;Pc5p&sg^0UDwaPRAK&j3zh}XQ3(1#yL0_ z&Cnd@p#@qZfb($yf(Rju2%?A~js%iO;X+)5R=60g(FT{GE!v?yI-nyi#bvl0op1#@ zqYJv?N_4|jxEj}>JFdlb=z*T-h2H3czUYVR(H{eFZ2vSeC_o{y$YCG`VK8n$5r*JK z48<@E$4w~42#mxijK&z;jIkJpTW~9G!+1=z}W!frf*J=lwV*pEl?7#_zHcoI+HX*`2xaRATZAP(Vqynq++QvMzt z&R;RBcBRUlj;k53k*hwU+T5xKt5&U2zw(Y+A8bih*b!`e^p6UiOS-tML6xrcnwR7q zSG^>bEJ(&u>0Ba}N<>15XflVvYBM~(_PEUXU}ZkqhlZ(3Bx)?<3Tp-G*m}j?5Mf9bDA-*g0Utuu;VYS)OVIgVRF>49$+DwWu^S za7})8LOK)7#^TX^rJsX#a#P6b2hU_6=&m$Y(Oy~+$!a4acRn29AL z1(8H37EecVg_&F?T9}K*;-PRfn9KzKFDV#Fv`-fnjvbLL9-S?2{NG)^enI)-)t_xI z?Y*)rzg^Q{DichEbD=;a8_EQtiF7QGP9}nZSUQ`Cg`=@pES%kUaM9uXXoY_PU006o delta 2692 zcmWmD^Pd+60EhA2H+Nk&FWa_lyFS^rFMO)Y_GQ~wU3Hn4XS9Va4PmHltv&tl{s*4d z>j^t^Ep-?cWC)5_n6Y|L#AI1PR=|p7#kS&Dajke(d@F&K&4R*vRT=!99B*%mzCSfW97B-S^2F3Rza(f zRoE(G6}5_4#jO%nNvo7q+A3p}waQuLtqN8}tCCgOs$x~Os#(>o8dgoKmQ~xTW7W0l zS@o?3Rzs_i)!1rcHMN>q&8-$zORJUD+G=C9wc1(jtqxX4tCQ8)qE8pAtJTfwZuPKw zTD`2^Rv)Xc)z9j04X_4UgRH^U5NoJ4%o=Wuutr*=tkKpOYpgZS8gEUoCR&rMFl(|k z#hPkOvusVbW>_<=aBG$|+nQs|wdPs#tp(OXYmv3sT4F7=mRZZK71l~?m9^ShV?|hN zt##IVYlF4X+GK6Ewpd%OZPs>chqcq%W$m{1SbME~)_&`NbxK2R^^5hZ^_%t5 zdS$(~-dMj|e^`H7e_3y>ch=w5Ki0q2d+R^zL%4$GDhL6@LTtoAT*O0sBtSw0BN0N7 z7)g*6$&ef=kP@ko8flOg>5v{7kP(@X8CejDtjLD!$bp>5h1|%4yvT?AD1d?}gu*C- zq9}&qD1nkFh0-X4vM7i0sDO&7gvzLbs;GwQsDYZOh1#ftx~PZxXn=-jgvMxsrf7!d zXn~e!h1O_;wrGd;=zxysgwFWbzYDse8@i(hdZHJ4qYwI`ANpee24WBfV+e*~7=~j6 zMq(63V+_V(9L8e;CSnr8Fd0)Y71Ll$#|+FwIA&os=3p-7VLldMAr@gVmS8ECVL4V{ zC01cI)*u3Fu@3980UNOio3RC3u?^d?13R$`yRip*u@C!k00(ghhj9c)5s70sjuVK& zNu0uIMB@z3;vCN70xsebF5?QW;u@|a1~+gMw{RPGa2NORDL%vJ_yS+zD}0S_@GZW> zeSD7}@Bk0-2#@h2e!>$x#WOs|3;c{<@GE}9OT5Bsyut7I1ApQ#yu~~Gjeqbj-s3-f z2ntt#{SiPc#6}#%MLfhu0whE*5+MYMkpxMR49SrKDUk}Pkp^jz4(X8r8IcK@kp-d1 zifqV^9LR}W$c;S6i+sqB0w{<=D2yT~iee~^5-5pMD2*~Gi*hKB3aE%msEjJ8ifX8i z8mNg{sEsMDhF~a$VK_!$Bt~I0#$YVQVLT>aA|@dWlQ9KTF%8Ca%)m^9 zV-{v(4(4JW=3@aCVi6W&36^3RmSY80Vii_n4I;1>>#!ahuo0WE8C$Rw+prxwuoJtm z8+))9`>-Dea1e)Z7)NjvkvN9qIDsgf#3`IcG|u2G&fz>R;36*JGOpk%uHiaja054S z3%7A6a7uRro9Bnb36A+BNvXs=Lxv?<5*(c@EGiHch%6HNK3m+#(9kFM1JN<7?*>Z5 F{vQaL1Lgn# diff --git a/docs/index.html b/docs/index.html index 55618d75ed4..ba193f30e2b 100644 --- a/docs/index.html +++ b/docs/index.html @@ -1,4 +1,4 @@ - + @@ -366,7 +366,7 @@

眈眈探求 | + 2024-05-02 00:15:07 D-Link DIR-X3260 prog.cgi SetUsersSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd webserver listening on TCP ports 80 and 443. The issue results from the lack of proper validation of a user-supplied string before copying it to a fixed-size stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-21675. 详情