Full title: D-Link DIR300, DIR600, DIR645 hedwig.cgi Buffer Overflow in Cookie Header 
Category: remote exploits
Platform: hardware
This Metasploit module exploits an anonymous remote code execution vulnerability on several D-Link routers. The vulnerability exists in the handling of HTTP queries to the hedwig.cgi with long value cookies. This Metasploit module has been tested successfully on D-Link DIR300v2.14, DIR600 and the DIR645A1_FW103B11 firmware.

# 0day.today @ http://0day.today/