| عنوان | Tenda AC1206 V15.03.06.23 NULL Pointer Dereference |
|---|
| الوصف | A vulnerability has been identified in Tenda AC1206 firmware version V15.03.06.23. The issue resides within the websReadEvent function, where the strlen function is invoked with a null pointer. This improper handling results in a segmentation fault due to the internal dereference of the null pointer. The vulnerability is exploitable remotely, and an exploit has been publicly disclosed, allowing potential attackers to leverage this flaw. |
|---|
| المصدر | ⚠️ https://github.com/JohenanLi/router_vuls/blob/main/websReadEvent/websReadEvent.md |
|---|
| المستخدم | minipython (UID 75988) |
|---|
| ارسال | 18/10/2024 03:19 PM (2 سنوات منذ) |
|---|
| الاعتدال | 23/10/2024 08:03 AM (5 days later) |
|---|
| الحالة | مكرر |
|---|
| إدخال VulDB | 281555 [Tenda AC6/AC7/AC8/AC9/AC10/AC10U/AC15/AC18/AC500/AC1206 حتى 20241022 /goform/GetIPTV websReadEvent Content-Length الحرمان من الخدمة] |
|---|
| النقاط | 0 |
|---|