| タイトル | tenda ac8 stack overflow vulnerability |
|---|
| 説明 | The function "formSetDeviceName" in tenda ac8 "US_AC8V4.0si_V16.03.34.06_cn_TDC01" is vulnerable to a stack-based buffer overflow. When this function reads in a parameter supplied by the user, it passes the variable to the function without performing any length check, which means that the stack-based buffer could be overflowed. This vulnerability could allow an attacker to easily execute a denial-of-service attack or remote code execution with carefully crafted overflow data by accessing the page. To secure the system, input parameters should be strictly checked and filtered for length to prevent such vulnerabilities from occurring. |
|---|
| ソース | ⚠️ https://github.com/GleamingEyes/vul/blob/main/tenda_ac8/ac8_1.md |
|---|
| ユーザー | tianwenqi (UID 46929) |
|---|
| 送信 | 2023年08月21日 04:38 (3 年 ago) |
|---|
| モデレーション | 2023年09月03日 08:38 (13 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 238633 [Tenda AC8 16.03.34.06_cn_TDC01 formSetDeviceName メモリ破損] |
|---|
| ポイント | 20 |
|---|