VDB

CVE-2013-6027

CVE-2013-6027 PUBLISHED CVSS 8.5 HIGH

Stack-based buffer overflow in the RuntimeDiagnosticPing function in /bin/webs on D-Link DIR-100 routers might allow remote authenticated administrators to execute arbitrary commands via a long set/runtime/diagnostic/pingIp parameter to Tools/tools_misc.xgi.

EPSS 2.93% · 86.7th percentile

Risk Scores

CVSS 2.0
8.5
EPSS Score
2.93%
86.7th percentile

Affected Products

VendorProductVersions
dlinkdir-100
n/an/a*

Timeline

  • Oct 14, 2013 CVE Published
  • Oct 14, 2013 PoC Published
  • Oct 14, 2013 PoC Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 2, 2023 EPSS Score
  • Jul 16, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›