| 제목 | Totolink EX1800T V9.1.0cu.2112_B20220316 Stack-based Buffer Overflow |
|---|
| 설명 | TOTOLINK EX1800T V9.1.0cu.2112_B20220316 has a stack-based buffer overflow vulnerability. This vulnerability afferts the setWiFiExtenderConfig interface of the file cstecgi.cgi. The manipulation of the argument 'apcliSsid' leads to buffer overflow. This vulnerability don't need to login, due to insufficient input validation and sanitization, an attacker can exploit this flaw by input malicious data through the apcliSsid field. Successful exploitation allows the attacker to get shell or cause ddos.
|
|---|
| 원천 | ⚠️ https://github.com/kn0sky/cve/blob/main/TOTOLINK%20EX1800T/Stack-based%20Buffer%20Overflow%2003%20setWiFiExtenderConfig-_apcliSsid.md |
|---|
| 사용자 | selph (UID 82377) |
|---|
| 제출 | 2025. 03. 06. AM 08:39 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 03. 16. PM 01:52 (10 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 299869 [TOTOLINK EX1800T 까지 9.1.0cu.2112_B20220316 /cgi-bin/cstecgi.cgi setWiFiExtenderConfig apcliSsid 메모리 손상] |
|---|
| 포인트들 | 20 |
|---|