| Titel | Edimax BR-6428nC v1.16 Buffer Overflow |
|---|
| Beschreibung | A stack-based buffer overflow vulnerability exists in the IQ setup `setWAN` handler of Edimax BR-6428nC v1.16. In the PPTP configuration path, the attacker-controlled `pptpDfGateway` parameter is copied into a fixed-size stack buffer with `strcpy()` and without any length validation.
An attacker can send an oversized request value to crash the web process and may be able to achieve arbitrary code execution depending on memory layout and platform protections. |
|---|
| Quelle | ⚠️ https://tzh00203.notion.site/Edimax-BR-6428nC-v1-16-setWAN-pptpDfGateway-Stack-Overflow-33db5c52018a80c1835dd4fab4b6c7f2 |
|---|
| Benutzer | tian (UID 93438) |
|---|
| Einreichung | 10.04.2026 04:54 (vor 2 Monaten) |
|---|
| Moderieren | 02.05.2026 13:05 (22 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 360843 [Edimax BR-6428nC bis 1.16 /goform/setWAN pptpDfGateway Pufferüberlauf] |
|---|
| Punkte | 17 |
|---|