| शीर्षक | Tenda i3 V1.0.0.7(3856) Buffer Overflow |
|---|
| विवरण | A stack-based buffer overflow vulnerability exists in Tenda i3 V1.0.0.7(3856) in the function formwrlSSIDset, reachable through /goform/wifiSSIDset. The vulnerable POST parameter is GO. Because the handler copies this parameter into a stack-based buffer without proper length checks, an attacker can supply an oversized value to corrupt stack memory. Successful exploitation results in a service crash and may provide a path to arbitrary code execution. This issue is separately triggerable through the GO parameter of the same endpoint. |
|---|
| स्रोत | ⚠️ https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-i3-v1.0.0.7(3856)-formwrlSSIDset-go-buffer-overflow |
|---|
| उपयोगकर्ता | Fan95 (UID 95969) |
|---|
| सबमिशन | 12/03/2026 03:44 AM (4 महीनों पहले) |
|---|
| संयम | 27/03/2026 01:50 PM (15 days later) |
|---|
| स्थिति | प्रतिलिपि |
|---|
| VulDB प्रविष्टि | 350406 [Tenda i3 1.0.0.6(2204) /goform/wifiSSIDset formwrlSSIDset index/GO बफ़र ओवरफ़्लो] |
|---|
| अंक | 0 |
|---|