إرسال #600735: TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflowالمعلومات

عنوانTOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow
الوصفWe found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formFilter function, url is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the url to execute arbitrary code.
المصدر⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_42/42.md
المستخدم
 pjq123 (UID 86618)
ارسال19/06/2025 05:54 PM (1 سنة منذ)
الاعتدال21/06/2025 08:00 AM (2 days later)
الحالةمكرر
إدخال VulDB309034 [TOTOLINK A3002R/A3002RU 3.0.0-B20230809.1615 HTTP POST Request /boafrm/formFilter ip6addr تلف الذاكرة]
النقاط0

Do you know our Splunk app?

Download it now for free!