| タイトル | Tenda AC9 v1.0/V3.0 V15.03.06.42_multi Stack-based Buffer Overflow |
|---|
| 説明 | A stack-based buffer overflow vulnerability exists in the Tenda AC9 router. The vulnerability is located in the `formGetRebootTimer` function of the web service component. When processing the configuration items `sys.schedulereboot.start_time` and `sys.schedulereboot.end_time`, the program fails to perform proper bounds checking and directly copies the configuration values into stack buffers via the `GetValue` function. An attacker can tamper with these configuration fields and set them to excessively long strings to trigger a stack overflow, which may cause the web service to crash or continuously restart. In severe cases, this vulnerability could potentially lead to remote code execution.
|
|---|
| ソース | ⚠️ https://github.com/glkfc/IoT-Vulnerability/blob/main/Tenda/tenda4.md |
|---|
| ユーザー | jfkk (UID 79868) |
|---|
| 送信 | 2026年01月31日 15:34 (3 月 ago) |
|---|
| モデレーション | 2026年02月07日 18:28 (7 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 344895 [Tenda AC9 15.03.06.42_multi formGetRebootTimer メモリ破損] |
|---|
| ポイント | 20 |
|---|