| タイトル | Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflow |
|---|
| 説明 | We found an stack overflow vulnerability in Linksys router with firmware which was released recently, allows remote attackers to crash the server.In the router's portRangeForwardAdd function, ruleName、schedule、inboundFilter、TCPPorts、UDPPorts is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the ruleName、schedule、inboundFilter、TCPPorts、UDPPorts to execute arbitrary code. |
|---|
| ソース | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_36/36.md |
|---|
| ユーザー | Bond_yes (UID 89043) |
|---|
| 送信 | 2025年08月14日 18:23 (10 月 ago) |
|---|
| モデレーション | 2025年08月26日 09:35 (12 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 321397 [Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 迄 1.2.07.001 portRangeForwardAdd ruleName/schedule/inboundFilter/TCPPorts/UDPPorts メモリ破損] |
|---|
| ポイント | 20 |
|---|