| タイトル | Tenda WH450 V1.0.0.18 Stack-based Buffer Overflow |
|---|
| 説明 | A buffer overflow vulnerability has been discovered in the Tenda WH450 Router firmware version V1.0.0.18. The vulnerability exists in the /goform/PPTPClient HTTP request handler and can be exploited remotely by unauthenticated attackers to achieve arbitrary code execution or cause denial of service conditions. The vulnerability is triggered when processing requests containing the following parameters with excessive data lengths: netmsk.
|
|---|
| ソース | ⚠️ https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_WH450/PPTPClient/PPTPClient.md |
|---|
| ユーザー | z472421519 (UID 91218) |
|---|
| 送信 | 2025年12月20日 21:14 (4 月 ago) |
|---|
| モデレーション | 2025年12月23日 15:15 (3 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 337851 [Tenda WH450 1.0.0.18 HTTP Request /goform/PPTPClient netmsk メモリ破損] |
|---|
| ポイント | 20 |
|---|