CVE-2026-5981: Buffer Overflow in D-Link DIR-605L
A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the function formAdvFirewall of the file /goform/formAdvFirewall of the component POST Request Handler. Such manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
AI Analysis
Technical Summary
This vulnerability involves a buffer overflow in the formAdvFirewall function of the D-Link DIR-605L router firmware version 2.13B01. The flaw arises from improper handling of the curTime argument in the /goform/formAdvFirewall POST request handler, allowing an attacker to remotely trigger a buffer overflow condition. The vulnerability has a CVSS 4.0 base score of 8.7, indicating high severity with network attack vector, low attack complexity, no privileges required, no user interaction, and high impact on confidentiality, integrity, and availability. The product affected is no longer maintained by D-Link, and no official fix or patch has been published.
Potential Impact
Successful exploitation of this buffer overflow could allow a remote attacker to execute arbitrary code or cause a denial of service on the affected device. Given the high CVSS score and the nature of the vulnerability, the impact includes potential full compromise of the router's functionality and security. Since the device is no longer supported, affected users remain exposed to this risk without vendor-provided remediation.
Mitigation Recommendations
No official patch or remediation is available as the affected product is no longer supported by D-Link. Users are advised to discontinue use of the vulnerable firmware version 2.13B01 on DIR-605L devices. Where possible, replace the affected hardware with a supported model or implement network-level protections such as firewall rules to restrict access to the device's management interface from untrusted networks.
CVE-2026-5981: Buffer Overflow in D-Link DIR-605L
Description
A vulnerability has been found in D-Link DIR-605L 2.13B01. This affects the function formAdvFirewall of the file /goform/formAdvFirewall of the component POST Request Handler. Such manipulation of the argument curTime leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a buffer overflow in the formAdvFirewall function of the D-Link DIR-605L router firmware version 2.13B01. The flaw arises from improper handling of the curTime argument in the /goform/formAdvFirewall POST request handler, allowing an attacker to remotely trigger a buffer overflow condition. The vulnerability has a CVSS 4.0 base score of 8.7, indicating high severity with network attack vector, low attack complexity, no privileges required, no user interaction, and high impact on confidentiality, integrity, and availability. The product affected is no longer maintained by D-Link, and no official fix or patch has been published.
Potential Impact
Successful exploitation of this buffer overflow could allow a remote attacker to execute arbitrary code or cause a denial of service on the affected device. Given the high CVSS score and the nature of the vulnerability, the impact includes potential full compromise of the router's functionality and security. Since the device is no longer supported, affected users remain exposed to this risk without vendor-provided remediation.
Mitigation Recommendations
No official patch or remediation is available as the affected product is no longer supported by D-Link. Users are advised to discontinue use of the vulnerable firmware version 2.13B01 on DIR-605L devices. Where possible, replace the affected hardware with a supported model or implement network-level protections such as firewall rules to restrict access to the device's management interface from untrusted networks.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-04-09T12:18:23.955Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69d843771cc7ad14da3fb5d2
Added to database: 4/10/2026, 12:25:27 AM
Last enriched: 4/17/2026, 11:52:10 AM
Last updated: 5/25/2026, 12:20:24 PM
Views: 91
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.