إرسال #615487: Tenda FH451 v1.0.0.9 Buffer Overflowالمعلومات

عنوانTenda FH451 v1.0.0.9 Buffer Overflow
الوصفThe router FH451V1.0.0.9 from Shenzhen Tenda Technology Co., Ltd. contains a binary stack overflow vulnerability located within the fromWizardHandle function. This function receives a parameter a1 via a POST request and extracts variables WANT and WANS from it. When WANS equals 1 and WANT equals 2, the execution enters a conditional branch. Within this branch, the function sub_3C434 is called, which unsafely copies the PPW value from a1 into a 256-byte buffer without performing any bounds checking. An attacker can exploit this vulnerability to cause a denial of service (DoS). Furthermore, it can be leveraged to construct a ROP (Return-Oriented Programming) chain to overwrite the return address, enabling privilege escalation or remote code execution (RCE).
المصدر⚠️ https://github.com/zezhifu1/cve_report/blob/main/FH451/fromWizardHandle.md
المستخدم
 zezhifu (UID 87457)
ارسال14/07/2025 04:31 AM (12 أشهر منذ)
الاعتدال17/07/2025 12:26 PM (3 days later)
الحالةتمت الموافقة
إدخال VulDB316737 [Tenda FH451 1.0.0.9 POST Request /goform/WizardHandle fromWizardHandle PPW تلف الذاكرة]
النقاط20

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!