CVE-2025-67074 in AC10
Summary
by MITRE • 12/17/2025
A Buffer overflow vulnerability in function fromAdvSetMacMtuWan of bin httpd in Tenda AC10V4.0 V16.03.10.20 allows remote attackers to cause denial of service and possibly code execution by sending a post request with a crafted payload (field `serverName`) to /goform/AdvSetMacMtuWan.
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 12/17/2025
This vulnerability exists within the Tenda AC10V4.0 V16.03.10.20 router firmware's httpd binary, specifically in the fromAdvSetMacMtuWan function that handles network configuration requests. The flaw manifests as a classic buffer overflow condition when processing the serverName parameter submitted through the /goform/AdvSetMacMtuWan endpoint. This represents a critical security weakness that aligns with CWE-121, which describes buffer overflow conditions where insufficient bounds checking allows attackers to overwrite adjacent memory locations. The vulnerability is particularly concerning because it operates over HTTP protocol, making it accessible to remote attackers without requiring physical access to the device.
The technical implementation of this vulnerability allows an attacker to send a specially crafted POST request containing an excessively long serverName field to the designated endpoint. When the httpd daemon processes this request, it fails to properly validate the input length before copying data into a fixed-size buffer, resulting in memory corruption that can lead to arbitrary code execution or system crash. This behavior corresponds to ATT&CK technique T1203, where adversaries leverage application vulnerabilities to execute malicious code. The buffer overflow occurs during the handling of user-supplied input, making it a prime target for remote exploitation.
The operational impact of this vulnerability extends beyond simple denial of service, as it potentially enables complete system compromise. A successful exploitation could allow attackers to gain unauthorized access to the router's administrative interface, modify network configurations, redirect traffic, or establish persistent backdoors. The vulnerability affects the entire Tenda AC10V4.0 product line running the specified firmware version, creating a widespread security risk for networks relying on these devices. The attack surface is particularly broad since the vulnerability is accessible over the internet without authentication requirements, making it highly attractive to automated exploitation tools.
Mitigation strategies should prioritize immediate firmware updates from Tenda to address the buffer overflow condition through proper input validation and bounds checking. Network administrators should implement firewall rules to restrict access to the vulnerable endpoint and monitor for suspicious traffic patterns. The solution must include proper parameter validation in the serverName field, implementing length checks and secure memory handling practices that prevent buffer overflows. Additionally, network segmentation and intrusion detection systems should be deployed to detect and prevent exploitation attempts. Organizations should also consider implementing secure coding practices that align with industry standards such as those outlined in the CWE guidelines for preventing buffer overflow vulnerabilities, ensuring that all user inputs are properly sanitized before processing.