### [CVE-2012-10021](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-10021)
![](https://img.shields.io/static/v1?label=Product&message=DIR-605L&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=1.12%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-121%20Stack-based%20Buffer%20Overflow&color=brightgreen)

### Description

A stack-based buffer overflow vulnerability exists in D-Link DIR-605L Wireless N300 Cloud Router firmware versions 1.12 and 1.13 via the getAuthCode() function. The flaw arises from unsafe usage of sprintf() when processing user-supplied CAPTCHA data via the FILECODE parameter in /goform/formLogin. A remote unauthenticated attacker can exploit this to execute arbitrary code with root privileges on the device.

### POC

#### Reference
- https://web.archive.org/web/20121012062554/http://www.devttys0.com/2012/10/exploiting-a-mips-stack-overflow/
- https://www.exploit-db.com/exploits/29127
- https://www.vulncheck.com/advisories/dlink-dir605l-captcha-handling-stack-based-buffer-overflow

#### Github
- https://github.com/ARPSyndicate/cve-scores