A critical buffer overflow in the D-Link DI-8100 router allows remote unauthenticated attackers to execute arbitrary code.

The vulnerability is a buffer overflow occurring in the sprintf function within the /auto_reboot.asp file of the HTTP Handler component, triggered by improper handling of the enable/time argument.

With a CVSS score of 9.8, this flaw allows for Remote Code Execution. Exploitation can lead to full router compromise, providing the attacker with persistent access to the network, the ability to intercept traffic, or redirecting users to malicious sites.

Immediate Action: Update the device firmware to the latest version. If no update is available, disable the web-based management interface.

Proactive Monitoring: Monitor logs for abnormal reboot requests or suspicious HTTP traffic directed at the router's management interface.

Compensating Controls: Use firewall rules to restrict access to the web management interface to trusted internal IP addresses only.

Public Exploit Available: Yes

Due to the public availability of exploit code, this router is at extreme risk. If a firmware update cannot be applied immediately, the router's management interface must be taken offline or restricted to trusted networks to prevent compromise.