| Titolo | TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow |
|---|
| Descrizione | The T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input.
Attacker can overwrite the saved return address, lead to RCE. |
|---|
| Fonte | ⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md |
|---|
| Utente | reisen_1943 (UID 76990) |
|---|
| Sottomissione | 18/07/2025 21:38 (12 mesi fa) |
|---|
| Moderazione | 19/07/2025 21:15 (24 hours later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp buffer overflow] |
|---|
| Punti | 17 |
|---|