| タイトル | Tenda AC6V2.0 Tenda AC6V2.0 V15.03.06.23_multi Stack-based Buffer Overflow |
|---|
| 説明 | A vulnerability was determined in Tenda AC6V2.0 V15.03.06.23_multi. Specifically, the function form_fast_setting_wifi_set within the httpd binary is affected. This function improperly handles user-supplied input passed through the ssid argument, causing a stack-based buffer overflow. By supplying an overly long string to the ssid parameter via a crafted HTTP request, an attacker can overwrite the return address on the stack. This vulnerability can be exploited remotely, leading to denial of service or, potentially, arbitrary code execution with root privileges. |
|---|
| ソース | ⚠️ https://github.com/Axelioc/CVE/blob/main/Tenda/AC6V2.0/form_fast_setting_wifi_set.md |
|---|
| ユーザー | Haaalion (UID 89556) |
|---|
| 送信 | 2026年05月31日 16:19 (1 月 ago) |
|---|
| モデレーション | 2026年06月28日 20:21 (28 days later) |
|---|
| ステータス | 重複 |
|---|
| VulDBエントリ | 224831 [Tenda AC6 15.03.05.09_multi form_fast_setting_wifi_set ssid メモリ破損] |
|---|
| ポイント | 0 |
|---|