EdgeLord: Schrödinger’s 0-Day

**Executive summary:** This report documents a hands-on firmware analysis of CVE-2022-41140 affecting D-Link DIR-867/878/882 routers: the author decrypts firmware, locates and diff-checks prog.cgi, identifies a pre-auth stack-based buffer overflow (strcat on a 512-byte buffer) reachable via HTTP to lighttpd, and demonstrates both emulated and real-device techniques (including config manipulation to enable telnet) to reproduce and debug the vulnerability.