Enviar #631527: Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflowinformación

TítuloLinksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflow
DescripciónIn the router's scheduleAdd function, ruleName is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the ruleName to execute arbitrary code.As you can see here, the input has not been checked. The parameter ruleName is directly copy to a local variable placed on the stack, which overrides the return address of the function, causing buffer overflow.
Fuente⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_23/23.md
Usuario
 pjq123 (UID 86618)
Sumisión2025-08-10 13:49 (hace 9 meses)
Moderación2025-08-22 17:40 (12 days later)
EstadoAceptado
Entrada de VulDB321058 [Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 hasta 1.2.07.001 /goform/scheduleAdd ruleName desbordamiento de búfer]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!