D-Link DIR-615 - Denial of Service (PoC)

vendor:

DIR-615

by:

Aniket Dinda

9.8

CVSS

CRITICAL

Buffer Overflow

119

CWE

Product Name: DIR-615

Affected Version From: D-Link DIR-615

Affected Version To: D-Link DIR-615

Patch Exists: YES

Related CWE: CVE-2018-15839

CPE: h:d-link:dir-615

Metasploit: N/A

Other Scripts: N/A

Platforms Tested: Linux (Kali Linux)

2018

D-Link DIR-615 – Denial of Service (PoC)

An attacker can cause a denial of service (DoS) condition on the D-Link DIR-615 router by sending a maliciously crafted HTTP request with a long Authorization header. This will cause the router to crash and the network connection to be lost.

Mitigation:

Users should update their router to the latest firmware version to mitigate this vulnerability.

Source

Exploit-DB raw data:

# Exploit Title: D-Link DIR-615 - Denial of Service (PoC)
# Date: 2018-08-09
# Vendor Homepage: http://www.dlink.co.in
# Hardware Link:  https://www.amazon.in/D-Link-DIR-615-Wireless-N300-Router-Black/dp/B0085IATT6
# Version: D-Link DIR-615
# Category: Hardware
# Exploit Author:  Aniket Dinda
# Tested on: Linux (kali linux)
# Web: https://hackingvila.wordpress.com/2018/08/24/d-link-dir-615-buffer-overflow-via-a-long-authorization-http-header-click-here/
# Cve: CVE-2018-15839

# Proof Of Concept:

1- First connect to this network
2- Open BurpSuite and then start the intercept, making the necessary proxy changes to the internet browser.
3- Goto Easy setup > 
4- Now as the Burp is intercept is on, you will find an Authorization: Basic or cookie: SessionId followed by a string. Now we paste a string consisting oaf 5000 zeros.
5- Then forward the connection
6- Then your router automatically log out and the net connection will be gone.