Submit #725365: Tenda AC10U AC10U v1.0 Firmware V15.03.06.48、AC10U v1.0 Firmware V15.03.06.49 Buffer Overflowinfo

Titel	Tenda AC10U AC10U v1.0 Firmware V15.03.06.48、AC10U v1.0 Firmware V15.03.06.49 Buffer Overflow
Beschreibung	In the Tenda AC10U v1.0 Firmware V15.03.06.48、AC10U v1.0 Firmware V15.03.06.49 firmware has a buffer overflow vulnerability in the formSetPPTPUserList function. The Var variable receives the list parameter from a POST request and is later passed to the strcpy function. However, since the Since user can control the input of list, the statemeant v4 = strcpy(Var, "~"); can cause a buffer overflow.
Quelle	⚠️ https://www.notion.so/Tenda-AC10U-setPptpUserList-2d753a41781f80e8ba6bc37ba6100343?pvs=73
Benutzer	yhryhryhr_miemie (UID 65492)
Einreichung	28.12.2025 10:19 (vor 6 Monaten)
Moderieren	28.12.2025 14:20 (4 hours later)
Status	Akzeptiert
VulDB Eintrag	338600 [Tenda AC10U 15.03.06.48/15.03.06.49 HTTP POST Request /goform/setPptpUserList formSetPPTPUserList list Pufferüberlauf]
Punkte	17

Might our Artificial Intelligence support you?

Check our Alexa App!