إرسال #631538: Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflowالمعلومات

عنوان	Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflow
الوصف	We found an stack overflow vulnerability in Linksys router with firmware which was released recently, allows remote attackers to crash the server.In the router's addStaProfile function, profile_name、Ssid、wep_key_1、wep_key_2、wep_key_3、wep_key_4、wep_key_length、wep_default_key、cipher、passphrase is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the profile_name、Ssid、wep_key_1、wep_key_2、wep_key_3、wep_key_4、wep_key_length、wep_default_key、cipher、passphrase to execute arbitrary code.
المصدر	⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_33/33.md
المستخدم	pjq123 (UID 86618)
ارسال	10/08/2025 01:55 PM (10 أشهر منذ)
الاعتدال	23/08/2025 05:38 PM (13 days later)
الحالة	تمت الموافقة
إدخال VulDB	321226 [Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 حتى 1.2.07.001 /goform/addStaProfile تلف الذاكرة]
النقاط	20

Do you know our Splunk app?

Download it now for free!