Submit #149075: H3C R160 V1004004 was discovered to contain a stack overflow via go parameter at /goForm/aspForminfo

TitelH3C R160 V1004004 was discovered to contain a stack overflow via go parameter at /goForm/aspForm
Beschreibung- Product:H3C R160V smart wifi Router - Manufactor:H3C - product information:https://www.h3c.com/cn/Service/Document_Software/Software_Download/Consume_product/Catalog/H3C_Magic_R/R160/ - firmware download:https://www.h3c.com/cn/d_202012/1361139_30005_0.htm The program obtains content via the go parameter, which is then passed to v3 and copied into *goHtmlUrl* without checking the size of v3. As a result, a buffer overflow vulnerability exists.
Quelle⚠️ https://github.com/xinzhihen06/dxq-cve/blob/main/h3cr160.md
Benutzer
 dengxiquan (UID 45363)
Einreichung26.04.2023 14:46 (vor 3 Jahren)
Moderieren12.05.2023 10:13 (16 days later)
StatusAkzeptiert
VulDB Eintrag228890 [H3C R160 V1004004 /goForm/aspForm go Pufferüberlauf]
Punkte20

ZurückÜbersichtWeiter

Want to stay up to date on a daily basis?

Enable the mail alert feature now!

n $_SERVER['REMOTE_ADDR'] ?? '0.0.0.0'; } } ?>