| Titre | Edimax BR-6208AC V2_1.02 Buffer Overflow |
|---|
| Description | A stack-based buffer overflow vulnerability exists in the IQ setup `setWAN` handler of Edimax BR-6428nC v1.16. In the PPTP configuration path, the attacker-controlled `pptpDfGateway` parameter is copied into a fixed-size stack buffer with `strcpy()` and without any length validation.
An attacker can send an oversized request value to crash the web process and may be able to achieve arbitrary code execution depending on memory layout and platform protections. |
|---|
| La source | ⚠️ https://tzh00203.notion.site/Edimax-BR-6428nC-v1-16-setWAN-pptpDfGateway-Stack-Overflow-33db5c52018a80c1835dd4fab4b6c7f2 |
|---|
| Utilisateur | tian (UID 93438) |
|---|
| Soumission | 10/04/2026 04:55 (il y a 2 mois) |
|---|
| Modérer | 02/05/2026 13:05 (22 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 360844 [Edimax BR-6208AC jusqu’à 1.02 /goform/setWAN pptpDfGateway buffer overflow] |
|---|
| Points | 17 |
|---|