| Titel | Tenda W3 V1.0.0.3(2204) Buffer Overflow |
|---|
| Beschreibung | A stack-based buffer overflow exists in Tenda w3 V1.0.0.3(2204) within formWifiMacFilterGet on /goform/WifiMacFilterGet. The index POST parameter is copied into a stack buffer with no size check. Sending an overlong index triggers stack corruption and process crash, with potential for code execution. The vulnerable path is entered when the handler parses wl_radio and index. |
|---|
| Quelle | ⚠️ https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-w3-formWifiMacFilterGet-index-buffer-overflow |
|---|
| Benutzer | Svigo_o (UID 95970) |
|---|
| Einreichung | 27.02.2026 15:08 (vor 1 Monat) |
|---|
| Moderieren | 11.03.2026 15:02 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 350410 [Tenda W3 1.0.0.3(2204) POST Parameter /goform/WifiMacFilterGet formWifiMacFilterGet wl_radio Pufferüberlauf] |
|---|
| Punkte | 20 |
|---|