提出 #600729: TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow情報

タイトルTOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow
説明We found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formRoute function, subnet is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the subnet to execute arbitrary code.
ソース⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_36/36.md
ユーザー
 pjq123 (UID 86618)
送信2025年06月19日 17:51 (1 年 ago)
モデレーション2025年06月21日 08:02 (2 days later)
ステータス承諾済み
VulDBエントリ313595 [TOTOLINK A3002R 1.1.1-B20200824.0128 /boafrm/formRoute subnet メモリ破損]
ポイント18

Do you want to use VulDB in your project?

Use the official API to access entries easily!