| शीर्षक | Tenda i3 V1.0.0.7(3856) Buffer Overflow |
|---|
| विवरण | A stack-based buffer overflow vulnerability exists in Tenda i3 V1.0.0.7(3856) in the formwrlSSIDget handler exposed by /goform/wifiSSIDget. The POST parameter index is copied into a fixed-size stack buffer without proper bounds checking. An attacker can exploit this flaw by sending an excessively long index value, causing stack memory corruption, denial of service, and potentially arbitrary code execution in the HTTP service. The issue is reproducible using a crafted POST request to the wireless SSID query endpoint. |
|---|
| स्रोत | ⚠️ https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-i3-v1.0.0.7(3856)-formwrlSSIDget-index-buffer-overflow |
|---|
| उपयोगकर्ता | Fan95 (UID 95969) |
|---|
| सबमिशन | 12/03/2026 03:43 AM (4 महीनों पहले) |
|---|
| संयम | 27/03/2026 01:49 PM (15 days later) |
|---|
| स्थिति | प्रतिलिपि |
|---|
| VulDB प्रविष्टि | 350405 [Tenda i3 1.0.0.6(2204) /goform/wifiSSIDget formwrlSSIDget index बफ़र ओवरफ़्लो] |
|---|
| अंक | 0 |
|---|