| 제목 | TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow |
|---|
| 설명 | We found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formDhcpv6s function, dnsaddr、interfacenameds、addrPoolStart、addrPoolEnd is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the dnsaddr、interfacenameds、addrPoolStart、addrPoolEnd to execute arbitrary code. |
|---|
| 원천 | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_41/41.md |
|---|
| 사용자 | pjq123 (UID 86618) |
|---|
| 제출 | 2025. 06. 19. PM 05:54 (1 년도 ago) |
|---|
| 모더레이션 | 2025. 06. 21. AM 08:00 (2 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 309666 [TOTOLINK A3002R 4.0.0-B20230531.1404 formDhcpv6s interfacenameds 메모리 손상] |
|---|
| 포인트들 | 0 |
|---|