Soumettre #618656: TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflowinformation

TitreTOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow
DescriptionThe T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input. Attacker can overwrite the saved return address, lead to RCE.
La source⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md
Utilisateur
 reisen_1943 (UID 76990)
Soumission18/07/2025 21:38 (il y a 12 mois)
Modérer19/07/2025 21:15 (24 hours later)
StatutAccepté
Entrée VulDB317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp buffer overflow]
Points17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!